News
Abstract
List of fix packs for IBM API Connect v2018.x.
Content
You can find out what's new in API Connect 2018.x at the IBM Docs
For information on the support lifecycle for API Connect 2018.x, see the product lifecycle policy page.
Downloads available for API Connect v2018.x can be found on Fix Central
V2018.4.1.19 - contains internal development, field reported fixes
Note: 2018.4.1.18 was not released and skipped to resume synchronized release number with IBM DataPower.
V2018.4.1.17 - contains internal development, field reported fixes
V2018.4.1.16 - contains internal development, field reported fixes
V2018.4.1.15 - contains internal development, field reported fixes
Note: 2018.4.1.14 was not released. This fixpack was skipped to resume synchronized release number with IBM DataPower.
V2018.4.1.13 - contains internal development, field reported fixes
V2018.4.1.12 - contains internal development, field reported fixes
V2018.4.1.11 - contains internal development, field reported fixes
V2018.4.1.10 - contains internal development, field reported fixes
V2018.4.1.9 - contains internal development, field reported fixes
V2018.4.1.8-iFix2 - contains internal development, field reported fixes
V2018.4.1.7-iFix1.5 - contains internal development, field reported fixes
V2018.4.1.6-iFix3 - contains internal development, field reported fixes
V2018.4.1.5 - contains internal development, field reported fixes
V2018.4.1.4 - contains internal development, field reported fixes
V2018.4.1.3 - contains internal development, field reported fixes
V2018.4.1.2 - contains internal development, field reported fixes
V2018.4.1.1 - contains internal development, field reported fixes
V2018.4.1.0 - contains internal development, field reported fixes, and new content
V2018.3.7 - contains internal development and field reported fixes
V2018.3.6 - contains internal development and field reported fixes
V2018.3.5 - contains internal development and field reported fixes
V2018.3.4 - contains internal development and field reported fixes
V2018.3.3 - contains internal development and field reported fixes
V2018.3.2 - contains internal development fixes only
V2018.3.1 - contains internal development fixes and the API Designer in the toolkit
V2018.2.11 - contains internal development fixes and the new Reboot Gateway feature
V2018.2.10 - contains internal development fixes only
V2018.2.9 - contains internal development fixes only
V2018.2.8 - contains internal development and field reported fixes
V2018.2.7 - contains internal development fixes only
V2018.2.6 - contains internal development fixes only
V2018.2.5 - contains internal development and field reported fixes
V2018.2.4 - contains internal development and field reported fixes
V2018.2.3 - contains internal development fixes only
V2018.2.2 - contains internal development fixes only
V2018.2.1 - contains internal development fixes only
V2018.1.0 - Product GA
| APAR | Summary |
| LI81538 | ADD LIVENESS PROBE TO 'CASSANDRA' AND 'CASSANDRA-OPERATOR' PODS |
| LI81983 | NO NEW ANALYTICS DATA BEING LOGGED |
| LI82060 | LOSS OF PRODUCT CATEGORIES AFTER SAVING FROM THE SETUP INFORMATION DESIGN TAB |
| LI82192 | PORTAL USER REGISTRATION FAILS WHEN USING CUSTOM SIGN-UP TEMPLATE. |
| LI82211 | VIEWING ANALYTICS FAILS WHEN SETTING A CUSTOM CERTIFICATE FOR ANALYTICS-CLIENT CLIENT CA CERTIFICATES. |
| LI82276 | USING $REF TO REUSE CODE FRAGMENTS DOES NOT WORK WITH OASV3 SPEC FILES |
| LI82277 | PVC DATA CORRUPTION AND AN INVALID CACHE DIRECTORY STRUCTURE MEAN'T ONE POD WAS UNABLE TO START. |
| LI82301 | UI ERROR IN CONSUMER ORGANIZATION MULTIPLE USER INVITES |
| LI82302 | Bulky API YAMALs take a long time to load |
| LI82305 | DELAY IN PORTAL SITE CREATION |
| LI82315 | INVOKE ACTION NEEDS TO ALLOW INLINE PARAMETER IN TLS-PROFILE |
| LI82318 | ERROR 502 BAD GATEWAY WHEN NAVIGATING THE API MANAGER UI |
| LI82330 | WHEN INVITING DEVELOPERS TO AN ORGANIZATION IN DEV PORTAL, DEVELOPER SIGNS UP BUT ARE ASSIGNED A NEW ORG HELP |
| LI82346 | PORTAL DOES NOT SHOW API FIELDS CORRECTLY |
| LI82373 | API Connect - Drupal SA-CORE-2021-009 |
| LI82380 | API Connect - Golang CVE-2021-29923 CVE-2021-34558 |
| LI82381 | ADVANCE CONSENT CONTEXT VARIABLE NOT AVAILABLE IN V5C GATEWAY |
| LI82393 | MAP POLICY MAY BE CASE SENSITIVE FOR HEADER NAMES WITH SOME USE CASES |
| LI82398 | PASSWORD RESET FAILS FOR PORTAL SITES |
| LI82401 | MAP OPTION TO CREATE REQUIRED SIBLING PROPERTIES OF OPTIONAL OBJECTS WILL FAIL TO DO SO FOR LEAF PROPERTY MAPPINGS |
| LI82402 | Apps Subscription approval linkS do not work for OIDC registries. |
| LI82411 | SUBTHEMES GENERATED ARE MISSING DRUPAL 9 COMPAT |
| LI82422 | TRYIT ->GENERATE FEATURE PRODUCES BAD JSON EXAMPLES |
| LI82466 | CONSUMER ORGANIZATION INVITATION FOR EXISTING USERS DOESN'T WORK PROPERLY |
| LI82467 | CAN'T GET API PROPERTY BY USING "API.PROPERTIES" IN V5 COMPATIBLE GATEWAY |
| LI82471 | Permission for managing and viewing subscription are not honored when working with a subscription |
| LI82477 | FOR OVA VERSION WHEN DOING UPGRADE APIC MAY TRY TO PULL UBUNTU UPDATE FILES WHICH CAUSE THE UPGRADE TO FAIL |
| LI82487 | UNABLE TO EDIT VANITY API ENDPOINT FOR A CATALOG |
| LI82493 | PORTAL SITE FEATURED CONTENT BLOCK DOES NOT HONOUR THE X-PATHALIAS FOR PRODUCTS |
| LI82085 | WHEN REPLACING API / PRODUCT THE CONTENT LINKS POINT TO NODES THAT HAVE BEEN DELETED |
This fix pack contains internal development fixes and the following field APARs.
| APAR | Summary |
| LI81318 | TOOLKIT / DESIGNER 2018 REGEX PATTERN PREVENT TO PUBLISH |
| LI81563 | NO NEW ANALYTICS DATA BEING LOGGED |
| LI81671 | LOSS OF PRODUCT CATEGORIES AFTER SAVING FROM THE SETUP INFORMATION DESIGN TAB |
| LI81730 | PORTAL USER REGISTRATION FAILS WHEN USING CUSTOM SIGN-UP TEMPLATE. |
| LI81791 | VIEWING ANALYTICS FAILS WHEN SETTING A CUSTOM CERTIFICATE FOR ANALYTICS-CLIENT CLIENT CA CERTIFICATES. |
| LI81862 | USING $REF TO REUSE CODE FRAGMENTS DOES NOT WORK WITH OASV3 SPEC FILES |
| LI81892 | ANALYTICS-INGESTION POD KEEPS RESTARTING. (JAVA.LANG.OUTOFMEMORYERROR: JAVA HEAP SPACE) |
| LI81940 | FORBIDDEN ERROR WHEN ATTEMPTING TO ADD MEMBER - USER HAS MEMBER:MANAGE PERMISSIONS |
| LI81982 | IMPORTING OR CREATING A NEW VERSION OF AN EXISTING API ADDS AN EXTRA INVOKE, PROXY, PARSE OR OTHER POLICY |
| LI82041 | CREATING A (SOAP PROXY) USING IBM API CONNECT FROM MULTIPART WSDL FILE VIA API MANAGER ISSUED AND ERROR |
| LI82064 | DEVELOPER PORTAL TEST TOOL DOES NOT USE THE CORRECT CONTENT-TYPE WHEN CALLING THE API FOR APPLICATION/X-WWW-FORM-URLENCODED |
| LI82081 | IN API ASSEMBLE INVOKE POLICY THE PASSWORD FIELD BEEN AUTOFILLED |
| LI82085 | WHEN REPLACING API / PRODUCT THE CONTENT LINKS POINT TO NODES THAT HAVE BEEN DELETED |
| LI82120 | DRUPAL CORE - CRITICAL - CROSS-SITE SCRIPTING - SA-CORE-2021-002 |
| LI82121 | The Portal dbstatus and status scripts report Mysql down while it's running. |
| LI82143 | TOKEN URL SET AS RELATIVE PATH EVEN THOUGH $(CATALOG.URL) IS SET AUTOMATICALLY IN API DEFINITION |
| LI82161 | CREATING AN API FROM WSDL FAILS TO READ A SCHEMA THAT HAS A SPACE IN AN END TAG |
| LI82168 | DEVELOPER PORTAL API TEST TOOL SHOULD SEND GRANT_TYPE AND SCOPE IN FORM BODY INSTEAD OF QUERY PARAMETERS |
| LI82170 | DROPDOWN FOR CONSUMER ORGANIZATION NOT RESPONDING |
| LI82172 | CIPHER UPDATES |
| LI82175 | WSDL FILE WITH `.XML` EXTENSION CAUSES IMPROPER GENERATION AND ERRORS |
| LI82207 | MAP POLICY DOES NOT PROPERLY RESOLVE MAP VARIABLE REFERENCE WITH ESCAPED PERIODS. |
| LI82212 | PRODUCTS WITH VISIBILITY SET TO AUTHENTICATED AND STILL BE LOADED |
| LI82213 | API TAKES FOR EVER TO RENDER AND WEB PAGE FINALLY CRASHES |
| LI82218 | DUPLICATE API APPEARS IN PORTAL |
| LI82228 | POSSIBLE TO SEE THE TITLE OF OTHER USER'S APPLICATIONS IF KNOW THE NID |
| LI82260 | API Connect Drupal update |
| LI82279 | GO UPDATE |
| LI82290 | Drupal SA-CORE-2021-003 |
| LI82291-1 LI82291-2 |
Golang CVE-2021-33194 CVE-2021-31525 |
| LI82295 | GOLANG CVE-2020-24553 |
| LI82297 | Drupal dated modernizr library update |
| Drupal CKeditor vulnerabilities | |
| LI82292 | Drupal SA-CORE-2021-004 |
| LI82330 | WHEN INVITING DEVELOPERS TO AN ORGANIZATION IN DEV PORTAL, DEVELOPER SIGNS UP BUT ARE ASSIGNED A NEW ORG HELP |
| LI82422 | TRYIT ->GENERATE FEATURE PRODUCES BAD JSON EXAMPLES |
| API Connect - Drupal SA-CORE-2021-011 | |
| LI82440 |
API Connect - LOG4J CVE
PVR0309953 -- CVE-2021-44228 -- Critical |
| LI82449 | LOG4J CVE-2021-45046, CVE-2021-45105, and CVE-2021-44832 |
| LI82466 | CONSUMER ORGANIZATION INVITATION FOR EXISTING USERS DOESN'T WORK PROPERLY |
API Connect v2018.4.1.16
Release Date: 2 April 2021
Status: Available
This fix pack contains internal development fixes and the following field APARs.
| APAR | Summary |
| LI81293 | NO WAY TO ADD THE USER'S DEFINED PARAMETER TO A PATH IN V2018 |
| LI81441 | INCONSISTENCIES IN SUBSCRIBER_EVENTS TABLES BREAK SYNCHRONISATION |
| LI81592 | $REF IN API PARAMETERS IS SHOWN AS A BLANK ENTRY IN API DESIGN VIEW |
| LI81616 | DOUBLE QUOTES IN EXAMPLE DEFINITION ARE SHOWN WITH BACKSLASHES IN THE DEVELOPER PORTAL EXPLORER |
| LI81750 | API MANAGER'S API ASSEMBLE TEST TOOL WRONGLY APPEND EXTRA TEXT IN THE "SCOPE" PARAMETER'S VALUE |
| LI81796 | API DESIGNER GENERATES DUPLICATE ENTRIES FOR PATH PARAMETERS |
| LI81841 | ERRONEOUS ERROR MESSAGES ARE OUTPUT REGULARLY IN OVA SYSLOG |
| LI81879 | MYSQL UPDATES |
| LI81890 | CONSUMER ORG INVITATION LOGIN FAILURE - OIDC USER REGISTRY |
| LI81921 | Use relative paths for tokenurls (and other internal endpoints) |
| LI81923 | API EDITOR WITHIN API MANAGER INCORRECTLY DISPLAYS A WARNING STATING CERTAIN POLICES ARE INVALID |
| LI81935 | The server API hostname is included in the portal error message. |
| LI81941 | PROPERTY "NAME" IN PLAN CONFIG IS CREATED AUTOMATICALLY WHEN EDITING A PLAN |
| LI81952 | AFTER UPGRADE FROM V10.0.1.0 TO V10.0.1.1, THE WRONG TRANSLATION IS SHOWN IN THE PORTAL" |
| LI81953 | PORTAL DB NOT CLEANING GCACHE PAGE FILES IN RARE CIRCUMSTANCES |
| LI81974 | UPGRADE TO 2018.4.1.15 FAILED FOR ANALYTICS |
| LI81978 | MANAGEMENT SUBSYSTEM UPGRADE MAY FAILS DURING APIM SCHEMA UPGRADE STEP |
| LI81992 | FIX DEVELOPER PORTAL TO DISPLAY PATH ALIAS FOR PRODUCT OR API |
| LI81996 | MAP POLICY IN A CATCH CONSUMING XML INPUT DOES NOT DETECT THE PROPER CONTENT TYPE |
| LI82002 | OOM WHEN RUNNING PORTAL SITE CONTENT REFRESH WHERE DUPLICATE USERS ARE PRESENT. |
| LI82008 | SITE RESTORE FAILS DUE TO THE MAX_ALLOWED_PACKET LIMIT |
| LI82011 | STACK OVERFLOW OCCURS WHEN QUERY PARAM VALUE MATCHES THE VARIABLE NAME ITS TRYING TO RESOLVE |
| LI82120 | DRUPAL CORE - CRITICAL - CROSS-SITE SCRIPTING - SA-CORE-2021-002 |
API Connect v2018.4.1.15
Release Date: 1 February 2021
Status: Available
This fix pack contains internal development fixes and the following field APARs.
| APAR | Summary |
| LI80966 | ENCODED CHECK BOX IS NOT HAVING ANY EFFECT ON API PROPERTY VALUES |
| LI81272 | NOT ABLE TO UPDATE USER REGISTRY DISPLAY NAME WHEN USERS HAVE BEEN CREATED |
| LI81473 | DEVELOPER PORTAL INCREASE HTTP STRICT-TRANSPORT-SECURITY MAX AGE TO 1 YEAR (31536000 SECONDS) |
| LI81477 | PORTAL TRY IT IS NOT UPLOADING MULTIPART/FORM-DATA FILE CONTENT CORRECTLY |
| LI81484 | EXAMPLE REQUEST IS NOT GENERATED WHEN PARAMETER IS OF TYPE "FILE" IN FORMDATA |
| LI81489 | MODIFY LDAP FAILED WITH 500 ERROR IF USER REGISTRY IS USED IN API USER REGISTRY IN ANY CATALOG |
| LI81491 | API CALL WITH BASICAUTH SECURITY ENFORCEMENT IS SUCCESSFUL WITHOUT PASSOWRD |
| LI81533 | RETIRING OR REMOVING A PRODUCT FROM APIC MANAGER UI DOES NOT DELETE API FROM THE PORTAL |
| LI81559 | PORTAL "SHOW LINKS TO REGISTER APPLICATION" DEACTIVATION STILL ALLOWING CREATION FROM PRODUCTS PAGE |
| LI81562 | API VALIDATION ERROR IN PORTAL |
| LI81568 | THE SITES /PRIVATE/TEMP DIRECTORY IS NOT GETTING CLEANED UP |
| LI81574 | IN V5/V5C GATEWAY, WHEN REFRESH TOKEN IS USED TO GENERATE NEW ACCESS TOKEN THE NEW TOKEN STILL HAS THE OLD REVOCATION URL |
| LI81583 | MAP POLICY UI WILL NOT CREATE THE CORRECT MAP ACTION FOR AN INNER ARRAY IN SOME CASES |
| LI81634 | WHEN CREATING A NEW OPENAPI, THE ASSEMBLE DEFAULT BLOCKLIST X-IBM-CLIENT-ID - GATEWAY |
| LI81644 | TASK EMAIL APPROVAL LINK DOES NOT GO TO TASK PAGE |
| LI81645 | OAUTH PROVIDER INTROSPECTION ENDPOINT VARIABLE REFERENCES ERROR |
| LI81663 | CHANGING TITLE OF API - POP UP MESSAGE IS INCORRECT |
| LI81666 | UNAUTHORIZED ERROR WHEN DOWNLOADING THE SOAP API WSDL FILE |
| LI81670 | DEVELOPER PORTAL CLUSTER STUCK IN FILE SYNCHRONIZATION AFTER UPGRADE |
| LI81677 | UNDER CERTAIN CIRCUMSTANCES, USER-DEFINED POLICIES ERRONEOUSLY DO NOT MEET AVAILABILITY CRITERIA DUE TO INVALID PEERING DATA |
| LI81679 | DO NOT TO UPDATE USER IN THE WRITABLE LDAP SERVER DURING LOGIN UNLESS USER INFO HAS CHANGED |
| LI81680 | ADD MAP POLICY OPTIONS TO ALLOW EMPTY ELEMENTS OF XML INPUT TO GENERATE BADGERFISH JSON ARTIFACTS |
| LI81682 | INCORRECT SERIALIZATION OF "ATTRIBUTE_MAPPING" PROPERTY IN LDAP USER REGISTRY |
| LI81686 | REPUBLISHED API CONTAINS OLD WSDL FILE IN PORTAL |
| LI81697 | WHEN INVITING MEMBER TO PROVIDER ORGANIZATION ANY USER CAN REGISTER WITH MEMBER INVITATION LINK |
| LI81700 | IBM API CONNECT: HANDLE 0 SITES BACKED UP IN BACKUP_PORTAL |
| LI81703 | BLOCK ACCESS TO SPECIFIC URLS ON A DEVELOPER PORTAL |
| LI81706 | API FAILS WITH HTTP REQUEST HEADER WITH INVALID XML CHARACTER |
| LI81707 | WRONG GATEWAY ENDPOINT USED IN CASE OF MULTI ENDPOINT API OPERATIONS |
| LI81715 | OPENAPI WITH MASSIVELY NESTED SCHEMAS CAUSE MAX DEPTH ERROR |
| LI81716 | USER DEFINED POLICY ARE NOT AVAILABLE IN THE POLICY ASSEMBLY PALETTE |
| LI81721 | DUPLICATE APPROVAL EMAILS SENT TO ORG OWNER FOR SUBSCRIPTION APPROVAL WHEN CATALOG HAS A SPACE |
| LI81732 | CANNOT CHOOSE CUSTOM INSTALL PATH FOR DESIGNER |
| LI81735 | THE LIST OF PRODUCT PLANS AVAILABLE FOR SUBSCRIPTION MAY APPEAR INACCURATE IN THE API MANAGER UI |
| LI81738 | PRODUCT DISAPPEARS FROM PORTAL WHEN REMOVING PRODUCT FROM GATEWAY SERVICE |
| LI81744 | SET `MAXIMUM RECORDS ACROSS INTERVALS` VALUE TO 5000 TO ENABLE DATAPOWER APAR IT34047 |
| LI81749 | IN FRENCH LANGUAGE BROWSER, SWITCH POLICY'S CONDITION EDITOR SCREEN "AND" "OR" UPDATED IN THE YAML WITH WORDS IN FRENCH |
| LI81752 | IN API DESIGN PAGE, API CONNECT RETURNS A VALIDATION ERROR WHEN SELECT LONG, FLOAT, OR DOUBLE PROPERTY TYPES IN A DEFINITION |
| VULNERABILITIES DETECTED FOR API MANAGER WEB CONSOLE (UI) | |
| LI81765 | NOTIFICATION TEMPLATES NEED TO INCLUDE APPTITLE INSTEAD OF APPNAME |
| LI81769 | INCREASE OAUTH INTROSPECTION METADATA SIZE TO 1024 |
| LI81773 | INVALID REQUEST PARAMETERS WILL NOT BE DETECTED AFTER DATAPOWER APAR IT32057 |
| LI81774 | CANNOT PUBLISH UNENFORCED API USING TOOLKIT CLI |
| LI81776 | NON EMAIL ADDRESS USERNAME NOT ACCEPTED ON SIGNUP |
| LI81788 | MIGRATION TOOL TO TURN OFF CHUNKED-ENCODING BY DEFAULT, WITH OPTIONAL INPUT IF CUSTOMER WANTS CHUNKED-ENCODING ENABLED |
| LI81793 | MIGRATION UTILITY NEEDS AN OPTION TO ENFORCE / NOT ENFORCE REQUIRED PARAMETERS |
| LI81797 | MIGRATION UTILITY NEEDS OPTION FOR CUSTOM CLIENT_ID AND CLIENT_SECRET HEADERS. |
| LI81813 | RECEIVE HTTP 500 ERROR WHEN TRYING TO REMOVE A TLS CLIENT PROFILE AT SPACE LEVEL |
| LI81814 | "LARGE OPEN API DOCUMENT" WARNING MESSAGE ON THE DEVELOPER PORTAL API EXPLORE PAGE |
| LI81819 | OPTIONAL FIELDS NOT VISIBLE |
| LI81821 | CALL TO API IN DEVELOPER PORTAL TRY IT FAILS AFTER CREDENTIALS ARE REGENERATED FOR SUBSCRIBED APPLICATION |
| LI81832 | APPLICATION CREDENTIALS WITH NO SUMMARY ARE SHOWN AS BLANK OR NULL IN THE "TRY IT" CLIENT-ID COMBO BOX |
| LI81849 | DELETE_SITE EXITS IF CAN'T UPLOAD THE BACKUP TO REMOTE SERVER |
| LI81850 | ISSUE IS WITH TEST CONNECTION BUTTON FOR SMTP SERVER |
| LI81851 | CREATE AN APPLICATION DIALOG TITLE IS NOT TRANSLATED IN THE PORTAL |
| LI81853 | TEST CONNECTION FOR EMAIL SERVER SENDS BLANK PASSWORD ON EDIT |
| LI81855 | THE VALUE OF CATALOG PROPERTY CANNOT BE EDITED AFTER CREATING |
| LI81865 | UNABLE TO UPDATE JWKS ENDPOINT FOR EXISTING OIDC USER REGISTRY |
| LI81869 | API PROPERTIES USED IN REQUIRED VALUES FIELDS CREATES VALIDATION ERRORS |
| LI81872 | AUDIT LOGGING TESTING FAILS WITH ERROR 500 USING HTTPS / SSL |
| LI81875 | NODE.JS UPDATES |
| LI81876 | INFORMATION LEAKAGE VULNERABILITY |
| LI81877 | ETCD UPDATES |
| LI81878 | DRUPAL UPDATES |
| LI81882 | PORTAL SESSION IS VALID EVEN AFTER THE BROWSER IS RESTARTED |
| LI81906 | 2 GWS IS ASSOCIATED WITH OTHER ANALYTICS SERVICE, IS TIED TO THE SAME CATALOG, BUT ANALYTICS DATA IS DISPLAYED ON PORTAL |
| LI81915 | PHP CVE-2020-7070 |
| LI81919 | 2018 GATEWAY CHARTS FAIL TO TEMPLATE UNDER HELM VERSION 2.16.8 OR LATER |
| LI81932 | SITE MISSING ON PORTAL SYSTEM RESTORE |
| LI81959 | CVE-2020-8201, CVE-2020-8251, CVE-2020-8252 |
| LI81961 | JAVA CVE-2020-14782 |
| LI81962 | CVE-2020-14779, CVE-2020-14792, CVE-2020-14796, CVE-2020-14797, CVE-2020-14798 |
| LI81971 | PORTAL (DRUPAL) DOES NOT OBEY X-FRAME-OPTIONS CONFIGURATION AND RETURNS DENY |
| LI82000 | ANALYTICS UPGRADE STUCK ON ADDONS |
API Connect v2018.4.1.13
Release Date: 31 August 2020
Status: Available
This fix pack contains internal development fixes and the following field APARs.
| APAR | Summary |
| LI81182 | EDITING CATALOG PORTAL SITE URL WITH INVALID VALUE IS SUCCESSFUL |
| LI81235 | DEVELOPER PORTAL INACCESSIBLE AFTER ACTIVATION OF REDIRECT MODULE |
| LI81240 | ERROR MESSAGE WHEN TRYING TO DELETE CONSUMER ORG OWNER ACCOUNT |
| LI81276 | API MANAGER - NO SCROLL BAR FOR PROVIDER ORGS LIST |
| LI81416 | INCORRECT FALL BACK TO DEFAULT TLS CLIENT PROFILE WHEN CONFIGURING GATEWAY SERVICE AFTER REBOOT |
| LI81417 | PORTAL OUT OF SYNC WHERE CATALOG IS VERY LARGE |
| LI81425 | API CONNECT CVE-2020-4337 |
| DEVELOPER PORTAL: REMOVE THE HTTP RESPONSE HEADER "X-SPEED-CACHE-KEY" | |
| LI81449 | SYNC PROBLEM DUE TO SNAPSHOTS MISSING REFERENCES |
| LI81485 | MANAGEMENT AND PORTAL BACKUPS FAILING ON API CONNECT DEPLOYED ON CLOUD PAK FOR INTEGRATION |
| LI81502 | A MEMBER WITH "VIEWER" ROLE IS NOT ABLE TO SEE APPLICATION SUBSCRIPTIONS. |
| LI81552 | APIC UI AND REST API BECOME PROGRESSIVELY LESS RESPONSIVE OVER THE COURSE OF SEVERAL WEEKS |
| LI81555 | UNDER CERTAIN CIRCUMSTANCES, DYNAMIC REREGISTRATION AND RECONFIGURATION (DRR) MAY CLEAR THE CERT:/// DIRECTORY |
| LI81576 | ON WEB BROWSER WHEN SELECT A LANGUAGE THAT IS NOT SUPPORTED BY APIC, APIC USE CZECH AS THE MAIN LANGUAGE |
| LI81594 | 3RD PARTY OAUTH FAILURE RETURNS 403 FORBIDDEN |
| LI81595 | MANY USELESS DNS LOOKUPS |
| LI81598 | UNABLE TO PLACE A BLOCK IN STRUCTURE->BLOCK LAYOUT IN THE DEVELOPER PORTAL ADMIN |
| LI81608 | API DESIGNER UI ASSEMBLY LOOPING AFTER APPLYING FP12 |
| LI81610 | MYSQL UPDATE |
| LI81617 | APIC V2018 MGMT NOT START PROPERLY |
| LI81620 | TWO DUPLICATE APPROVAL EMAILS SENT TO ORG OWNER WHEN CATALOG HAS SPACE |
| LI81621 | THE TOKEN AND TOKEN_EXPIRATION ARE NOT CLEARED UP ON RESTORE |
| LI81623 | HONOR ACCESS_TOKEN.EXP IN REFRESH_TOKEN GRANT TYPE WHEN USING OIDC USER REGISTRY |
| LI81625 | GOLANG CVE-2020-7919 |
| LI81626 | CHANGE MEMBER ROLE IS MISSING CACHE INVALIDATION |
| LI81628 | ADD MORE SECURITY HEADERS TO PORTS 443 AND 4443 |
| LI81635 | KEYSTORE/TRUSTSTORE TITLE SHOULD SHOW TITLE |
| KEYSTORE/TRUSTSTORE IS NOT SHOWN IN SPACE | |
| LI81638 | DRUPAL SEARCH-INDEX UPDATE CAN FAIL WITH OOM DURING TRANSLITERATION OF MEGABYTE WSDLS |
| LI81639 | NATIVE OAUTH PROVIDER GIVES EI-STOP-ON-ERROR IN THE UI |
| LI81640 | NEW API DEFINITION IS FAILING WHEN TRYING TO HAVE OAUTH SECURITY DEFINITION ALONE |
| LI81648 | UNAUTHORIZED USER ACCESS |
| LI81660 | AFTER ENABLING OMNISEARCH CANNOT EDIT API DEFINITION |
| LI81667 | INCOMPLETE DEVELOPER PORTAL BACKUP DUE TO LARGE DATA |
| LI81674 | CUSTOMIZE THE PLAN API LIST OPTION IN PRODUCT IS NOT DISPLAYING APIS IN APIM UI |
| LI81676 | API DEFINITION HAS NULL PROPERTY AFTER MIGRATION FROM V5 TO V2018 |
| LI81685 | DOWNLOADED DRAFT API VIA OMNISEARCH CONTAINS INCORRECT REFERENCES |
| LI81690 | OAUTH PROVIDER / USER REGISTRY / TLS CLIENT PROFILE REFERENCES ARE NOT UPDATED DURING REPUBLISH |
API Connect v2018.4.1.12
Release Date: 26 June 2020
Status: Available
This fix pack contains internal development fixes and the following field APARs.
| APAR | Summary |
| LI81058 | THE TEXT CURSOR MOVES TO THE END AUTOMATICALLY AFTER USER ENTERS ONE CHARACTER WHEN EDTING API/PRODUCT IN APIM |
| LI81438 | A PUBLISH WITH AN INVALID XML CHARACTER IN SOME CATALOG OR API METADATA COULD INVALIDATE THE ENTIRE CATALOG AT THE GATEWAY |
| LI81447 | INVOKE POLICY FAILS IF RESPONSE HAS A CONTENT TYPE FOR AN XLSX DOCUMENT |
| LI81452 | GATEWAYSCRIPT CODE WITH AN ESCAPED BACKSLASH IN SOURCE WILL HAVE THE CODE CHANGED TO ELIMINATE ONE OF THOSE BACKSLASHES |
| LI81459 | ERROR REMOVING TRUSTSTORE FROM TLS SERVER PROFILE IN CMC |
| LI81463 | UNABLE TO SAVE SOAP PROXY API AFTER RENAMING |
| LI81467 | STOP THE DB-LOG VOLUME GETTING FULL |
| LI81488 | CONSUMER ORGANIZATION MANAGE GROUP FOR SUBSCRIBABILITY DOES NOT HONOR THE GROUP |
| LI81495 | AFTER UPDATING THE APPLICATIONS E.G. REPLACING THE CREDENTIALS ONLY ONE SUBSCRIBED PRODUCT IS LISTED UNDER SUBSCRIPTIONS |
| LI81508 | SELECTING CORG WITH 20+ CONSUMER ORGS CAUSES UNEXPECTED APP CREATION |
| LI81510 | PORTAL EXEC COMMANDS NOT PRINTING ANY DATA DURING A SITE RESTORE, THEREFORE CAUSING THE REQUEST TO TIMEOUT |
| LI81529 | PRODUCT NOT REMOVED FROM ONE OF THE CONFIGURED GATEWAY SERVICES |
| LI81539 | DATAPOWER OAUTH ACCESS CODE FLOW DOES NOT PROVIDE A LIST OF SCOPES FOR THE USER TO APPROVE |
| COMPATABILITY MODULE APIM.JS SETVARIABLE FUNCTION MUST SET THE MESSAGE CONTENT-TYPE HEADER TO UNKNOWN |
API Connect v2018.4.1.11
Release Date: 11 May 2020
Status: Available
This fix pack contains internal development fixes and the following field APARs.
| APAR | Summary |
| LI80644 | DEVELOPER PORTAL FORCES LOGOUT ON SHORT OIDC TOKEN EXPIRY |
| LI80733 | INSTALLATION OF THE GOOGLE_ANALYTICS MODULE INTERFERES WITH THE API CONNECT DEVELOPER PORTAL USER REGISTRATION FORM |
| LI81339 | IN PORTAL UI, CATEGORIES (TAGS) FROM OLD PRODUCT/API VERSIONS ARE COPIED OVER |
| LI81349 | INCONSISTENT ORG URL VALUES IN APPLICATION HOOKS |
| LI81351 | DEVELOPER PORTAL TRY IT API TEST TOOL DOESN'T SUPPORT + CHARACTER IN THE OAUTH PASSWORD FIELD |
| LI81353 | CLICKJACKING VULNERABILITY |
| LI81357 | MAP POLICY FAILS TO MAP SOME XML INPUT ELEMENTS. |
| LI81362 | WSDL IMPORT ERROR WHEN USING RELATIVE IMPORT PATH FOR WSDL AND XSD FILES |
| LI81367 | RESTORE PODS TERMINATE WITH STATUS "ERROR" |
| LI81371 | UNABLE TO DOWNLOAD WSDL FILE |
| LI81375 | INVOKE POLICY MAY FAIL IN SOME CASES WHEN THE OUTPUT VARIABLE SPECIFIED IS MESSAGE |
| LI81385 | OIDC USER REGISTRY'S USERINFO ENDPOINT URL CANNOT BE CHANGED BACK TO EMPTY STRING OR NULL. |
| LI81388 | MANAGER UI NOT RENDERING API PROPERTIES ON EDIT |
| LI81391 | MAP POLICY WITH XML INPUT AND A SET ACTION WITH A FOREACH WHERE THE FOREACH ELEMENT IS NOT REPEATING WILL FAIL TO MAP |
| LI81397 | SYNC TO GATEWAY FAILS DUE TO LARGE SUMMARY FIELD 65535 CHARS ERROR |
| LI81400 | PLAN NAME STILL SHOWS IN ENGLISH AFTER ADDING MULTILINGUAL SUPPORT FOR FRENCH |
| LI81403 | PORTAL SITE UPGRADE FAILURE TO V2018.4.1.10 |
| LI81406 | NODE.JS UPDATE |
| LI81407 | DRUPAL UPDATES |
| LI81408 | PHP UPDATES |
| LI81414 | NGINX UPDATE |
| LI81422 | UNABLE TO INSTALL A MODULE OR THEME ON THE DEVELOPER PORTAL WHEN THE MODULE IS IN A COMPRESSED .ZIP FILE |
| LI81426 | API CONNECT CVE-2020-4346 |
| LI81430 | UNABLE TO INVITE MEMBERS TO A CATALOG AS THE SCREEN DOES NOT LOAD IF THERE CUSTOM ROLE EXISTS IN THE PROVIDER ORGANIZATION |
| LI81436 | PROVIDE FOR A MORE GRACEFUL SHUTDOWN OF PODS |
| LI81437 | ANALYTICS 4.1.10 CLEAN INSTALL, ENABLING MESSAGE QUEUING FAILS |
| LI81448 | AFTER SET PRODUCT VISIBILITY TO AUTHENTICATED ANONYMOUS USERS STILL ABLE TO ACCESS THE PRODUCT AND API PAGES ON DEVELOPER PORTAL |
| LI81455 | ACCESS TO BLUEMIX-ANALYTICS.MIN.JS FAILED WHILE LOGGING TO CMC OR APIM CONSOLE IN RESTRICTED NETWORK ENVIRONMENT |
| LI81456 | IBM API CONNECT INSTALLATION ASSIST V2018.4.1.10 FOR WINDOWS GENERATED ISOS DO NOT STARTUP |
| LI81480 | UI ISSUE FOR API LISTING IN PRODUCT |
| LI81493 | ANALYTICS OPERATOR POD RESTARTS MULTIPLE TIMES IN APIC DEPLOYMENT ON CLOUD PAK FOR INTEGRATION |
| LI81494 | ONE PRODUCT ON PORTAL SITE AFTER UPGRADE TO FP10 |
| LI81500 | PHP UPDATE |
| LI81501 | PHP UPDATE |
| LI81503 | KUBERNETES UPDATE |
API Connect v2018.4.1.10
Release Date: 2 March 2020
Status: Available
This fix pack contains internal development fixes and the following field APARs.
| APAR | Summary |
| LI80674 | API CONNECT 2018.4.1.3 PORTAL ERROR MESSAGES AND NOTIFICATIONS ARE DISPLAYED IN ENGLISH-ONLY |
| LI80976 | APIM ENDPOINT ALLOWS ACCESS TO /ADMIN UI |
| LI81103 | PORTAL SIGN-UP NOTIFICATION EMAIL USES THE SENDER NAME AND EMAIL THAT WAS CONFIGURED IN CLOUD MANAGER INSTEAD OF PROVIDER ORG |
| LI81107 | UNAUTHORIZED ERROR WHEN ACCESS TOKEN EXPIRES USING API-MANAGER AND CLOUD-MANAGER WITH OIDC USER REGISTRY |
| LI81136 | SUPERSEDING A PRODUCT FAILS WHEN ATTEMPTING TO DO MULTIPLE TIMES |
| LI81175 | SOME UNICODE CHARACTERS IN JSON REQUEST FAIL THE REQUEST |
| LI81191 | IN PORTAL THE ORGANIZATION SELECTOR MENU DOES NOT WORK IF MANY CONSUMER ORGS ARE LISTED |
| LI81201 | WRONG ERROR MESSAGE WHEN WE DO NOT ALLOW TO SUBSCRIBE FROM APP WHICH CONTAIN DIFFERENT CONSUMER ORG |
| LI81210 | STATIC STATE PARAMETER IN OPENID CONNECT FLOW |
| LI81238 | CLUSTER WASN'T PERSISTING NODE IDS CORRECTLY, SO ACROSS POD RESTARTS FOR MESSAGE QUEUE ISSUES COULD ARISE |
| LI81244 | ORPHANED TRANSACTION LOCKS CAUSE 409 ERRORS WHEN ATTEMPTING TO REMOVE A PRODUCT FROM A CATALOG |
| LI81251 | API IS NOT AVAILABLE DURING PRODUCT REPLACE CAUSING TRAFFIC DISRUPTION |
| LI81252 | ADD ENTITY UPDATE CODE REQUIRED FOR UPGRADES |
| LI81257 | THE MAP POLICY MAY EXHIBIT ADDITIONAL LATENCY FOR SOME APIS |
| LI81264 | UPGRADING THE CLUSTER FAILS TO COMPLETE SUCCESSFULLY |
| LI81270 | PHP VULNERABILITIES |
| LI81273 | SUBSCRIPTION PENDING APPROVAL STATE NOT VISIBLE IN THE DEVELOPER PORTAL |
| LI81275 | ISSUES ENCOUNTERED WHEN EXPOSING AN EXTERNAL API IN THE DEVELOPMENT PORTAL, WITHOUT ENFORCING IN GATEWAY |
| LI81278 | THE APICUP HEALTH-CHECK COMMAND FOR MANAGEMENT SUBSYSTEM MIGHT RETURN ERROR: UNABLE RUN KUBECTL CMD |
| LI81284 | ASSEMBLY ERROR WHEN CREATING A SWITCH WITH OPERATION-ID |
| LI81287 | ARRAY MAPPING FAILS TO MAP CHILD PROPERTIES THE X-IBM-GATEWAY-MAP-EMULATE-V4-EMPTY-JSON-OBJECT IS ENABLED |
| LI81289 | MYSQL VULNERABILITY |
| LI81290 | MYSQL VULNERABILITY |
| LI81291 | ANALYTICS ERROR DATA NOT VISIBLE WITHIN SPACE FOR APIS PUBLISHED TO DATPOWER API GATEWAY TYPE |
| LI81296 | THE "REQUEST.PARAMETERS" VARIABLE FOR FORMDATA PARAMETER DOESN'T WORK PROPERLY AFTER UPGRADE TO 2018.4.1.9 |
| LI81298 | ADD COMMENTS IN SWAGGER EXAMPLE TO PRESENT XS:CHOICE ELEMENTS |
| LI81303 | VALIDATE POLICY INCORRECTLY FAILS XML VALIDATION IN SOME CASES |
| LI81305 | THIRD PARTY OAUTH PROVIDER "CUSTOM HEADER PATTERN" CONFIGURATION DOESN'T SYNC TO DATAPOWER |
| LI81310 | USERNAME/PASSWORD AUTOFILLING IN INVOKE POLICY FIELDS |
| LI81311 | VALIDATE POLICY XML VALIDATION MAY FAIL FOR VALID XML |
| LI81315 | WRONG ID USED FOR POD ANNOTATIONS |
| LI81321 | STRENGTHEN CIPHER SUITES FOR ETCD, KUBE SERVICES, AND CASSANDRA-OPERATOR |
| LI81323 | MAP POLICY ACTION'S DEFAULT PROPERTY DOESN'T ALLOW VARIABLE RESOLUTION FOR INTEGER OUTPUT PROPERTIES |
| LI81324 | GETTING IMPROPER XML RESPONSE FROM DEVELOPER PORTAL UI TRY IT FEATURE |
| LI81326 | GATEWAYSCRIPT POLICIES WITHIN LARGE APIS THAT USE MULTIPLE GETVARIABLE OR GETCONTEXT FUNCTION CALLS MAY BE LATENT |
| LI81333 | A PAYLOAD ON AN OPTIONS CALL ECHOES BACK ON THE RESPONSE |
| LI81336 | IN APIM DESIGNER USER IS UNABLE TO LOAD APIS IN DIRECTORY WITH MISSING X-IBM-CONFIGURATION |
| LI81338 | PRETTY PRINTING CHECK IS NOT WORKING CORRECTLY IN THE 'TRY IT' EXPLORER OF THE API CONNECT DEVELOPER PORTAL |
| LI81341 | DEVELOPER PORTAL ADMIN CONTAINER FAILS TO START AS PIPE FILES ARE DIRECTORIES |
| LI81343 | API PROPERTIES FOR SPECIFIC CATALOGS IN V5 COMPATIBILITY MODE RESPOND WITH THE DEFAULT VALUE RATHER THAN THE SPECIFIC CATALOG VALUE |
| LI81344 | APPLICATIONS ALREADY SUBSCRIBED TO API PRODUCT ARE DISPLAYED AGAIN IN THE SELECT APPLICATION PAGE |
| LI81348 | INCONSISTENCIES WITH THE APPLICATION AND CONSUMER ORGANIZATION DELETE HOOKS |
| LI81356 | 404 ERROR BACK WHEN REMOVAL OF DEFINED POLICY |
| LI81372 | ACCESS_TOKEN FROM APIM TO PORTAL SHOULD BE CACHED |
| LI81373 | MYSQL VULNERABILITIES |
API Connect v2018.4.1.9 - Release Date: 13 December 2019
API Connect v2018.4.1.9-ifix1 - Release Date: 31 January 2020
Status: Available
This fix pack contains internal development fixes and the following field APARs.
| APAR | Summary |
| LI81089 | MAP POLICY UI MAY SHOW DUPLICATE SCHEMAS THAT SHOW DUPLICATE MAPPING WIRES |
| LI81105 | RESTRICT ROLE BY IP IS NOT WORKING IN DEV PORTAL |
| LI81112 | CHANGING A DRUPAL ROLE NAME DOESNT UPDATE THE ACTIONS MENU ON THE PEOPLE LIST PAGE |
| LI81114 | LAST PAGE OF APPLICATION LIST DOES NOT SHOW END OF LIST WHEN PRESENTED BY MULTIPLE PAGES |
| LI81128 | REPLACING A PRODUCT WITH ANOTHER ONE WHICH CONTAINS A DIFFERENT CUSTOM VISIBILITY RESULT IN 504 (TIMEOUT) AND 409 (LOCK) ERRORS |
| LI81130 | PERFORMANCE OF EXPLORER WITH LARGE COMPLEX RESPONSE IN PORTAL AND CHROME |
| LI81131 | DUPLICATE PARAMETERS IN PATH AFTER IMPORTING REST API |
| LI81133 | UI NOT CONFORMING TO THE YAML SPEC WHEN CREATING A NEW PARAMETER |
| LI81135 | GROUP BY SUMMARY SHOWS SUMMARY AND PATH IN WHEN GROUPED BY TAGS IS ALSO SELECTED |
| LI81137 | ANALYTICS NOT WORKING, RETURNING AUTHENTICATION ERROR, INVALID COOKIE |
| LI81138 | ADD OPTION TO PORTAL TO HIDE X-CLIENT-CERTIFICATE HEADER WHEN USING MTLS |
| LI81142 | OPEN API VALIDATION ERRORS OF AN API IN PORTAL EXTRA 'VALUE' GETS ADDED TO SWAGGER DEFINITION |
| LI81143 | ACCESS-CONTROL-ALLOW-ORIGIN HEADER CONTAINS WILDCARD |
| LI81146 | MAP SET ACTION WITH A DEFAULT OF NULL DOES NOT USE THE API PROPERTY TO ENABLE NULL MAPPED VALUES |
| LI81150 | CLOUD MANAGER REGISTER SERVICE PAGE UI DOESN'T ALLOW ENDPOINTS THAT TRAILING WITH NUMBERS |
| LI81151 | API CONFIGURATION OBJECTS NOT CLEANED UP FROM GATEWAY SERVER UNDER CERTAIN CIRCUMSTANCES |
| LI81159 | A CONNECTIONERROR ON A PROXIED WEB SERVICE REQUEST WILL NOT RETURN AN ERROR RESPONSE |
| LI81168 | MAP POLICIES CREATED BY MIGRATION FROM APIM V4 TO API CONNECT V5 MAY NOT MAP ARRAYS IN SOME CASES |
| LI81170 | PATHS ORDER IS CHANGED ON UPDATING PATH |
| LI81173 | EMAIL SUBSCRIBERS FROM DEVELOPER PORTAL FAILS |
| LI81176 | 204 RESPONSE WITH NO PAYLOAD GETS PARSE ERROR WHEN RESPONSE INCLUDES CONTENT-TYPE |
| LI81177 | METHOD NOT ALLOWED ERROR HAS NO LOGGING INDICATING THE FAILING REQUEST URI |
| LI81188 | DEVELOPER PORTAL EXPLORER NOT SCROLLING BACK TO TOP WHEN SWITCHING BETWEEN OPERATIONS OF AN API |
| LI81190 | CALLING API WITHOUT "ACCEPT" HEADER DATAPOWER API GATEWAY ERROR RESPONSE DOESN'T HONOR THE PRODUCES PROPERTY DEFINED IN SWAGGER |
| LI81192 |
WEBFORM MODULES' EMAIL FUNCTION DOESN'T WORK AFTER UPGRADE
|
| LI81194 | TARGET SERVICE ADDED TO EXISTING API ALWAYS CREATED AS DATAPOWER-GATEWAY |
| LI81195 | USERS IN API MANAGER WITH VIEWER ROLE ABLE TO ADD API AND PRODUCT |
| LI81209 | WRONG GERMAN TRANSLATION FOR "EXAMPLE REQUEST" IN API DESCRIPTION |
| LI81239 | API USING PATCH VERB MAY FAIL IN DEVELOPER PORTAL |
| LI81249 | UPGRADE TO 2018.4.1.8 MAY FAIL WITH ENOBUFS ERROR |
| LI81261 | API MANAGER UI SLOWNESS WHEN LISTING CONSUMER ORGANIZATIONS AND APPLICATIONS |
API Connect v2018.4.1.9-ifix1 contains the following field reported APARs:
| APAR | Summary |
| LI80875 | INTERMITTENT 504 ERRORS AFTER ONE NODE IN A MANAGEMENT CLUSTER GOES DOWN |
| LI81185 | DEPRECATED PRODUCT AND SUBSCRIPTION DISAPPEAR FROM PORTAL UI |
| LI81236 | API MANAGEMENT SERVER WEBHOOKS CAN REMAIN STUCK PREVENTING THE SYNCHRONIZATION TO DATAPOWER GATEWAY AND/OR DEVELOPER PORTAL |
| LI81246 | PARAMETER FORMAT ATTRIBUTES ARE INCORRECTLY DELETED BY DESIGNER AFTER CLICK SAVE |
| LI81247 | API CONNECT DEVELOPER PORTAL: THE CSYNC2 SQLITE DATABASES NEED OCCASIONAL VACUUMING |
| LI81274 | APIC DEVELOPER PORTAL DRUPAL VULNERABILITIES |
| LI81279 | API MANAGER DEVELOPER SECTION SHOWS LAST MODIFIED DATE AS CURRENT TIME FOR APIS AND PRODUCTS |
| LI81281 | THE DEVELOPER PORTAL BLOCKS THE LOAD BALANCER IP ADDRESS |
| LI81294 | MISSING TRANSLATIONS IN PORTAL |
| LI81295 | GOLANG VULNERABILITIES |
| LI81299 | UPGRADE FAILURE ON PORTAL DUE TO PROBLEM SITE |
| LI81316 | AFTER UPGRADE TO 2018.4.1.9, API DESIGNER MIGHT FAIL TO LOGIN TO API MANAGER |
| LI81340 | IN API MANAGER APPLICATIONS TAB, THE CONSUMER ORGANIZATION FIELD NO LONGER THERE AFTER UPGRADE TO 2018.4.1.9 |
| LI81424 | MYSQL UPDATE |
API Connect v2018.4.1.8, V2018.4.1.8-iFix1, V2018.4.1.8-iFix2
Release Date: 21 November 2019
Status: Available
Status: Available
This fix pack contains internal development fixes and the following field APARs.
| APAR | Summary |
| LI80718 | WHEN SUBSCRIBING AN APPLICATION IN THE PORTAL, THERE IS PROBLEM IF CREATING MULTIPLE NEW APPLICATIONS |
| LI80769 | CANNOT EDIT OBJECT DEFINITIONS IN API MANAGER UI |
| LI80781 | SOME API CONNECT 2018 MANAGEMENT SERVER SCREENS SHOW POOR PERFORMANCE |
| LI80803 | API CONNECT 2018.4.1.3 ASSEMBLY SWITCH LOGIC IS ERASED WHILE EDITING API ASSEMBLY |
| LI80893 | API MANAGER "DESIGN" VIEW AFTER SELECT VALUES AS TYPE INTEGER AND CLICK SAVE, IN THE "SOURCE" VIEW IT BECOME TYPE: LONG |
| LI80948 | CHANGING OAUTH NATIVE PROVIDER TITLE, FROM THE UI, MAY LEAD TO INVALID OAUTH CONFIGURATION |
| LI80950 | SPECIAL CHARACTERS IN "REASON FOR DECLINING" ARE NOT ENCODED CORRECTLY |
| LI80951 | MGMT TO PORTAL/GATEWAY SYNC FAILURE - BAD SNAPSHOT |
| LI80959 | APP NAME NOT VISIBLE IN SUBSCRIPTION EMAIL |
| LI80969 | POPULATING API PROPERTY WITH VALUE FROM CATALOG PROPERTY FAILS INTERMITTENTLY |
| LI80972 | UNABLE TO ADD GATEWAY SERVICE TO CATALOG AFTER NETWORK OUTAGE |
| LI80985 | WHEN ADDING SECURITY DEFINITION IN API AFTER SELECT OAUTH2 AND CLICK SAVE A WARNING MESSAGE SHOWS UP |
| LI80989 | GATEWAY IS PARSING THE PAYLOAD WHEN THE REDACT POLICY IS FOR LOGS ONLY. |
| LI80990 | ISSUE WITH BASEPATH WHEN ACTIVATING API FROM EXISTING WSDL SERVICE (SOAP PROXY) AT CREATION TIME. |
| LI80991 | ISSUE WITH BASEPATH WHEN CREATING AN API FROM EXISTING WSDL SERVICE (SOAP PROXY) |
| LI80998 | UNABLE GET OAUTH TOKEN IN API MANAGER ASSEMBLY WITH APPLICATION FLOW |
| LI81000 | CANNOT IMPORT AN API YAML WHICH IS GENERATED FROM A WSDL |
| LI81001 | THE USERNAME IS DISPLAYED AS "UNDEFINED" ON THE PORTAL AFTER LOGIN USING OIDC REGISTRY |
| LI81007 | CREATING A NEW API FROM WSDL FAILS WITH THIS IS A VIOLATION OF A WS-I RULE MESSAGE IN API SOURCE VIEW |
| LI81010 |
TRANSFER OWNERSHIP FOR CONSUMER ORG ADMINISTRATIVELY NOT WORKING
|
| LI81020 | RESOLVE $(CATALOG.URL) IN TEST TOOL FOR OAUTH APIS |
| LI81021 | VALIDATE ACTION WILL FAIL IF DEFINITION CONTAINS SPACES |
| LI81025 | FOR THE APIS ON PORTAL, AT OPERATION LEVEL ALL THE OAUTH SCOPES ARE DISPLAYED INSTEAD OF THE ACTUAL SELECTED ONE |
| LI81027 | MAP MISSING XML OUTPUT WITH A COMPLEX CIRCULAR REFERENCING SCHEMA |
| LI81028 | GATEWAY/MGMT SYNC NOT RECOVERING AFTER CONNECTION FAILURES |
| LI81031 | PUBLISHED APIS NOT AVAILABLE ON GATEWAY - SYNC UNDEFINED IDS |
| LI81037 | RACE CONDITION CAN PREVENT THE TASK MANAGER FROM RUNNING - SYNC |
| LI81038 | OAUTH SCOPES PRESENT IN THE SOURCE CODE ARE NOT SEEN IN THE USER INTERFACE |
| LI81041 | AN XML INPUT MAPPING TO A JSON OUTPUT MAY PRODUCE BADGERFISH SYNTAX AFTER UPGRADING TO VERSION 5.0.8.7. |
| LI81043 | ERROR: A SECURITY SCHEME CALLED NAMEA HAS NOT BEEN DEFINED |
| LI81047 | API CONNECT V5 INVOKE POLICY ERROR RESPONSES NOT COMPATIBLE WITH APIM V4 |
| LI81048 | ERROR PUBSLISHING API WITH CUSTOM NAME FOR THE API KEY AS SECURITY DEFINTION |
| LI81050 | IMPROVE CASSANDRA RESTORE PROCESS ON SLOWER ENVIRONMENTS |
| LI81052 | ANALYTICS RESPONSE_BODY IS NOT POPULATED FOR SOME SOAP ERROR RESPONSES |
| LI81057 | GATEWAY WILL FAIL TO PUBLISH DUE TO CONTROL CHARACTERS IN THE CATALOG METADATA |
| LI81160 | APIC DESKTOP DESIGNER - UNABLE TO IMPORT OPENAPI SPEC DUE TO ERROR - CANNOT READ PROPERTY 'INFO' OF UNDEFINED |
| LI81062 | PRODUCT DELETE EVENT IS NOT GETTING GENERATED AS PART OF PRODUCT REPLACE - SYNC |
| LI81069 | UNEXPECTED URL QUERY PARAMETER WHEN SWITCHING PORTAL LANGUAGES |
| LI81072 |
UNABLE TO UPDATE CATALOG CONFIGURATION WITH 500 API ERROR
|
| LI81073 | IMPROVEMENTS AND BUG FIXES IN BACKUP AND REPAIR CRON JOBS CREATED BY CASSANDRA OPERATOR |
| LI81074 | MAP POLICY MAY GENERATE EMPTY XML ELEMENTS FOR NON REQUIRED ELEMENTS |
| LI81075 | WSDL ENDPOINT LOCATION NOT REPLACED FOR CERTAIN NON-ENGLISH LANGUAGE |
| LI81086 | NON-ASCII CHARACTERS IN THE API DESCRIPTION NOT DISPLAYED CORRECTLY |
| LI81090 | MANAGEMENT SERVER OOM ERROR DURING SYNC - EVENT QUEUES |
| LI81091 | THE HOOK_APP_CREATE HOOK IS BEING TRIGGERED AS PART OF APPLICATION DELETION |
| LI81092 | THE HOOK PAYLOAD TRIGGERED FOR APPLICATION CREATION SOMETIMES DOES NOT INCLUDE THE CLIENT SECRET |
| LI81094 | INPUT XML WITH REPEATING ELEMENTS USING A DIFFERENT NAMESPACE PREFIX WILL NOT MAP PROPERLY |
| LI81096 | API CONNECT CONTEXT VARIABLES ARE EMPTY |
| LI81098 | THE "COPY" BUTTON IN THE SCHEMA TAB IN THE DEVELOPER PORTAL DOESN'T WORK. |
| LI81099 | MANAGEMENT SERVER BACKUP FILE SIZE OPTIMIZATIONS |
| LI81106 |
MANAGEMENT SUBSYSTEM ALLOWS TLSV1.0 ON PORT 7001
|
| LI81108 | AFTER UPGRADE, APIM WITH UPGRADE STAGE REMAIN AT CONTROLPANE |
| LI81111 | INCORRECT ERROR DISPLAY DURING PASSWORD RESET FOR CERTAIN CLASSES OF USER |
| LI81113 | X-POWERED-BY HEADER EXPOSES PHP VERSION |
| LI81116 | LONG MAXLENGTH STRING EXAMPLE IN PORTAL CAUSES MEMORY EXHAUSTION IN BROWSER |
| LI81117 | AFTER UPGRADING API CONNECT TO VERSION 2018.4.1.6, CANNOT MODIFY PRE-EXISITNG OAUTH PROVIDER |
| LI81121 | REPLACE APPROVAL TASK RETURN ERROR |
| LI81122 | UNRESPONSIVE INGRESS CONTROLLER WHILE BEHIND A LOAD BALANCER |
| LI81123 | PROVIDE NEW FUNCTION TO ACCESS EXCEPTION DATA IN A CATCH |
| LI81125 | API WITH MARKDOWN IN THE DESCRIPTION IS NOT DISPLAYING CORRECTLY |
| LI81127 | CONTENT TYPE CHARSET SETTING LOST AFTER REDACTION POLICY |
| LI81134 |
SERVER CREDENTIAL VALIDATION NOT ENABLED DESPITE A TRUSTSTORE BEING PROVIDED.
|
| LI81139 | MULTIPLE WEBHOOK EVENTS CAN BE CREATED WITH THE PREVIOUS ID - SYNC |
| LI81140 | APIM MANAGER MAY NOT BE ABLE TO PROCESS TASKS ANYMORE - SYNC |
| LI81172 | API MANAGER V2018.4.1.8 API PUBLISHES CAN FAIL - DUPLICATE WEBHOOK EVENTS - SYNC |
API Connect v2018.4.1.7, V2018.4.1.7-iFix1, V2018.44.1.7-iFix1.5
Release Date: 13 September 2019
Status: Available
Status: Available
This fix pack contains internal development fixes and the following field APARs.
| APAR | Summary |
| LI80601 | EDITING YOUR USER PROFILE DOES NOT WORK IF THE USER REGISTRY IS LDAP |
| LI80728 | INCONSISTENT STORAGE OF CONSUMER ORGANIZATION MEMBERS LEADING TO PERMISSION ISSUES |
| LI80760 | SOAP API: ADDRESS LOCATION IS NOT SET TO CONFIGURED GATEWAY ENDPOINT WHEN WSDL IS DOWNLOADED FROM DEVELOPER PORTAL |
| LI80790 | JSON SAMPLE BODY GENERATOR DOES NOT HANDLE BOOLEAN CORRECTLY |
| LI80791 | MAP POLICY XML EMPTY ELEMENT PROPERTY DOES NOT WORK WHEN AN EMPTY ELEMENT HAS AN ATTRIBUTE. |
| LI80792 | MAP POLICY CANNOT ACCESS XSLT POLICY OUTPUT THAT CHANGES THE ORIGINAL CONTENT TYPE |
| LI80798 | WHEN INVITE A NEW MEMBER TO A SPACE, USER ROLE SELECTION IS MISSING FROM THE UI |
| LI80809 | MAP POLICY DOES NOT RESPECT REQUIRED PROPERTIES IN OUTPUT ARRAYS |
| LI80818 | CLI COMMAND CREATE:API, CREATE:PRODUCT TO ADD --GATEWAY-TYPE FLAG |
| LI80825 | MAP POLICY DOES NOT RESPECT REQUIRED PROPERTIES OF OPTIONAL OBJECTS THAT HAVE A CHILD PROPERTY WITH A MAPPED VALUE |
| LI80832 | PORTAL ACCOUNT LANGUAGE NOT SET TO BROWSER LANGUAGE ON FIRST TIME LOGIN OF EXISTING USERS |
| LI80833 | REST TO SOAP PROXY API TO INJECT PARSE POLICY IN ASSEMBLY IF DATAPOWER-API-GATEWAY |
| LI80835 | REST TO SOAP PROXY API GENERATES CORRUPTED REQUEST AFTER SAVE IN ASSEMBLY |
| LI80836 | REST TO SOAP PROXY API SHOULD STOP ON CONNECTION OR OPERATION ERROR |
| LI80840 | VALIDATE POLICY RETURNS JSON RESPONSE WHEN WSDL VALIDATION FAILS USING THE ASSEMBLY TEST TOOL |
| LI80847 | API CONNECT V5.0.8.X GWSCRIPT FUNCTION CALL APIM.ERROR() ADDS 400-600 MS TO TRANSACTION |
| LI80849 | PORTAL TRYIT UI HANGS WHEN API CALL RETURNS LARGER COMPLEX PAYLOAD |
| LI80874 | MISSING NOTIFICATION FEEDBACK TO CONSUMER WHEN SWITCHING CONSUMER ORGANIZATION IN THE PORTAL |
| LI80878 | CASSANDRA SNAPSHOTS CAN FILL UP DISK SPACE CAUSING THE SYSTEM TO CRASH |
| LI80886 | UNEXPECTED PAYLOAD MESSAGE RECORDED IN THE ACTIVITY LOG |
| LI80894 | CANNOT DELETE CONSUMER ORG WHEN THE OWNER IS A MEMBER IN ANY SCOPE IN THE PROVIDE ORG |
| LI80895 | NOT ABLE TO DELETE PROVIDER ORGANISATION MEMBER |
| LI80901 | MAP POLICY UI MERGE FUNCTION DOES NOT CREATE THE CORRECT SWAGGER IN SOME USE CASES |
| LI80909 | CHANGE TO ERROR CODE WHEN LARGE JSON PAYLOAD IN REQUEST |
| LI80910 | INGRESS CONTROLLER MAY STOP PROCESSING REQUESTS AND HANG |
| LI80919 | REDIRECT APPLICATION LINKS FROM THE API MANAGEMENT EMAILS WHEN THE USER IS NOT LOGGED IN TO THE DEVELOPER PORTAL |
| LI80920 | API PRODUCT NOT VISIBLE FROM THE DEVELOPER PORTAL WITH SPECIFIC BROWSER SIZE |
| LI80930 | DEVELOPER PORTAL MAY SHOW INCORRECT STATE FOR WEBHOOKS |
| LI80932 | OPTIONS, FIELDS, AND MESSAGES FOR DIFFERENT OAUTH FLOWS NOT CLEAR IN PORTAL TRY IT TOOL |
| LI80933 | API CONNECT REDACT POLICY WILL NOT REDACT AN XML ATTRIBUTE VALUE |
| LI80936 | MAP POLICY TO ALLOW CUSTOMIZATION OF INPUT NOT FOUND MESSAGE SEVERITY |
| LI80940 | USING WORD SUCH AS '/CORE' IN THE PORTAL URL MAY CAUSE THE PAGES OF THE SITE TO NOT LOAD CORRECTLY |
| LI80946 | PORTAL SITE UPGRADE FAILS IF REMOTE BACKUP COPY FAILS |
| LI80963 | GERMAN TRANSLATIONS IN THE APIC_API MODULE |
| LI80965 | API CONNECT MIGRATION TOOL NOT CREATING CONSUMER ORGS WITH PDUR |
| LI80974 | APIC V5086-IFIX - WSDLS THAT ARE IMPORTED REQUIRE ´/´ TO DESIGNATE THE PATH TO XSD IN WSDL SERVICE IMPORTS |
| LI80979 | MAP POLICY API MANAGEMENT V4 COMPATIBILITY OPTION FOR CREATING AN EMPTY OBJECT WHEN THE MAPPING FAILS |
| LI80980 | PUBLISHES NOT SYNCED TO PORTAL/GATEWAY AFTER APIM POD RESTART - 409 ERRORS |
| LI80981 | NATIVE APIC OAUTH SERVER URL ENCODING PASSWORDS |
| LI80984 | INVOKE POLICY DEBUG ANALYTICS DOES NOT CAPTURE XML RESPONSE PAYLOADS |
| LI80988 | CATALOG DEFAULT USER REGISTRY NOT RECOGNIZED AS THE DEFAULT IN DEVELOPER PORTAL SIGN IN/SIGN UP SCREENS |
| LI80993 | NESTED ALLOF EXAMPLE REQUEST IS INCORRECT IN DEVELOPER PORTAL |
| LI80994 |
APICONNECT DEVELOPER PORTAL SECURITY ISSUES REPORTED BY APPSCAN - MISSING OR INSECURE "X-CONTENT-TYPE-OPTIONS" HEADER
|
| LI80997 | MULTIPLE WEBHOOK CALLS IN PARALLEL MAY RESULT IN SYNCHRONIZATION FAILURES |
| LI81002 | APIM POD NOT PROPERLY GETTING THE COMPENSATOR LOCK RESULTING IN 409 ERRORS |
| LI81004 | NGINX VULNERABILITY |
| LI81011 | UBUNTU VULNERABILITIES |
| LI81013 | DRUPAL VULNERABILITY |
| LI81014 | SENSITIVE INFORMATION DISCLOSURE |
| LI81015 | PORTAL DB CONTAINER FAILS TO START |
| LI81016 | ADD RATE LIMITING TO API |
| LI81017 | KUBERNETES DIRECTORY TRAVERSAL VULNERABILITY |
| LI81022 | PORTAL SUPPORT FOR SAME USERNAME IN DIFFERENT USER REGISTRIES |
| LI81035 | PRODUCT CHANGES NOT REFLECTED ON PORTAL/GATEWAY - SYNC NULL ID |
| LI81046 | USERS UNABLE TO LOG IN TO THE DEVELOPER PORTAL AFTER UPGRADING TO 2018.4.1.7 |
| LI81051 | THE APIC-PORTAL-APIC-PORTAL-DB PODS DO NOT FULLY START. THE DB CONTAINER DOES NOT START |
| LI81056 | CUSTOM IMAGES CAUSE ERRORS IN APPLICATIONS WITH API CONNECT 2018.4.1.7 |
| LI81059 | APIC UPGRADE TO 2018.4.1.7 - DEVELOPER PORTAL OUT OF SYNC |
| LI81060 | CONSUMER ORGANIZATION STILL SHOWS UP IN THE USER'S ORG MENU AFTER THE USER IS REMOVED FROM THE ORG |
| LI81061 | ACCEPTING A RE-INVITATION TO A CONSUMER ORG DOES NOT WORK WHEN USING OIDC AND LANGUAGE SELECTION |
| LI81076 | ASSEMBLY TEST TOOL MAY SEND AN INVALID CONTENT-TYPE HEADER FOR SOAP REQUESTS |
| LI81078 | CREATE_SITE IN 4.1.7 FAILS TO CREATE SITES USING OLDER UI PLATFORMS |
| LI81079 | PORTAL DISPLAYS RETIRED AND DELETED PRODUCTS |
| LI80180 | SYSTEM ERROR REPORTED WHEN VISITING /NODE/ADD PAGE IN THE PORTAL |
| LI81081 | LINK TO ORGANIZATION ANALYTICS PAGE IS MISSING FROM MY ORGANIZATION |
| LI81087 | DUPLICATE APPS SEEN IN DEVELOPER PORTAL WHEN ONLY ONE WAS CREATE |
API Connect v2018.4.1.6, V2018.4.1.6-iFix1, V2018.4.1.6-iFix2, V2018.4.1.6-iFix3
Release Date: 22 July 2019
Status: Available
This fix pack contains internal development fixes and the following field APARs.
Status: Available
This fix pack contains internal development fixes and the following field APARs.
| APAR | Summary |
| LI80420 | ON DEVELOPER PORTAL, PASSWORD STRENGTH CONSTRAINT IS NOT APPLIED WHEN CREATING A NEW ACCOUNT |
| LI80609 | PUBLISHED PRODUCT MAY NOT APPEAR ON THE DATAPOWER GATEWAY |
| LI80616 | UNABLE TO LOG IN TO PORTAL USING A NEW CREATED 'NO PERMISSIONS' ROLE |
| LI80655 | DEVELOPER PORTAL CHANGE PASSWORD PAGE SHOWS SAME MESSAGE "NEW ROLE WAS ADDED OR EXISTING PASSWORD POLICY..." MULTIPLE TIMES |
| LI80672 | GETTING [] INSTEAD OF {} IN ADVANCED DEVELOPER PORTAL |
| LI80707 | 2018.4.1.2 INSTALLED AND CANNOT SAVE SOAP APIS AS A NEW VERSION |
| LI80708 | INCREASE IN DEFAULT MEMORY ALLOCATED TO CASSANDRA IN OVA INSTALLATIONS |
| LI80756 | ENGLISH ERROR MESSAGE IN GERMAN LOCAL API DESIGNER (TOOLKIT) |
| LI80759 | SLOW UI RESPONSE TIME WHEN ASSIGNING APIS TO PRODUCTS IN DESIGNER WITH LARGE NUMBER OF APIS AND PRODUCTS |
| LI80774 | UPDATE IDENTITY PROVIDER NAME WHEN REGISTRY NAME IS UPDATED |
| LI80782 | ERROR 400 WHEN DISPLAYING LIST OF PRODUCTS IN A CATALOG WITH SPACES |
| LI80785 | INCORRECT SERVICE STATE ON SYNCHRONIZATION FAILURE |
| LI80788 | USERNAME / PASSWORD IS AUTO-POPULATED IN THE API ASSEMBLY - INVOKE POLICY |
| LI80795 | DEVELOPER PORTAL AFTER SET MAX PASSWORD LENGTH IN PASSWORD POLICY IT DOESN'T SHOW THIS RESTRICTION IN CHANGE PASSWORD PAGE |
| LI80805 | LINE BREAKS IN EXAMPLE CERTIFICATE VALUE BREAK PORTAL TRY IT OPTION |
| LI80807 | API CONNECT 2018.4.1.4 API GATEWAY LOGS GATEWAY PEERING ERROR ALL SENTINELS ARE UNREACHABLE |
| LI80813 | PORTAL MAIL PROVIDER IS MISSING BCC SUPPORT |
| LI80815 | IN PORTAL WORKBENCH->CREATE CONTENT SHOULD NOT HAVE LINK TO CREATE APIS, PRODUCTS, CONSUMER ORGS AND APPS |
| LI80816 | "CANNOT READ PROPERTY 'URL' OF UNDEFINED" WHEN REMOVING THE ONLY GATEWAY SERVICE FROM A PUBLISHED PRODUCT IN A SPACE. |
| LI80837 | DEL/CLEAR OPERATION APIM/LUR CLIENT OPENING TOO MANY CONNECTION FOR CASSANDRA |
| LI80839 | DISABLE OPTIONS METHOD ON API |
| LI80842 | PORTAL USER CANNOT SWITCH TO CONSUMER ORG, UI UNRESPONSIVE |
| LI80843 | LONG RESPONSE TIME DURING OIDC PORTAL LOGIN |
| LI80844 | AFTER CREATING A CONSUMER ORG IN API MANAGER, LOGIN WITH THIS USER ON DEVELOPER PORTAL CAN FAIL |
| LI80850 | USERS UNABLE TO LOG IN TO CLOUD ADMIN / API MANAGER UIS |
| LI80851 | VANITY ENDPOINT TYPES ARE DISPLAYED INCORRECT ON DEVELOPER PORTAL |
| LI80853 | UNEXPECTED URL QUERY PARAMETER WHEN SWITCHING PORTAL LANGUAGES |
| LI80867 | GATEWAY PEERING DATABASE SIZE CAN GROW INDEFINITELY AS API SUBSCRIPTIONS ARE ADDED AND REMOVED |
| LI80868 | SAVING "INFO" OR "SCOPE" IN THIRD PARTY OAUTH PROVIDER UI RETURNS BASIC AUTHENTICATION PASSWORD SET TO '********' |
| LI80873 | FAILURE CREATING NEW APPLICATION FROM SUBSCRIBE PAGE ON DEVELOPER PORTAL |
| LI80876 | APIM POD DEATH DUE TO CASSANDRA WHILE GATEWAY SYNCHRONIZATION |
| LI80881 | OIDC TOKEN EXPIRY RESULTS IN PERMISSIONS ERROR IN THE DEVELOPER PORTAL |
| LI80882 | APPLICATION IMAGE UPLOAD OPTION IS DISPLAYED FOR USERS WHEN FEATURE IS DISABLED |
| LI80885 | GATEWAY MAY FAIL TO SYNCHRONIZE AFTER RESTORE |
| LI80888 | ERROR IN THE DEVELOPER PORTAL STATING NON VALID SWAGGER AFTER DEACTIVATING SECURITY DEFINITION |
| LI80889 | DRUPAL VULNERABILITY 2019 - PSA-2019-05-07 |
| LI80891 | API CONNECT UI NOT STARTING ON OPENSHIFT 3.9 |
| LI80892 | PORTAL APPLICATION CLIENT CERTIFICATE APPEARS EMPTY WHILE EDITING |
| LI80921 | JAVA UPDATES |
| LI80923 | INFORMATION DISCLOSURE VULNERABILITY |
| LI80927 | INFORMATION DISCLOSURE VULNERABILITY |
| LI80930 | DEVELOPER PORTAL MAY SHOW INCORRECT STATE FOR WEBHOOKS |
| LI80956 | MYSQL LIBMYSQLD (CVE-2018-3123) |
| LI80958 | PHP VULNERABILITIES |
| LI80980 | DEVELOPER PORTAL SITES OR DATA GATEWAY MAY BECOME NOT OUT OF SYNC WITH API MANAGEMENT SERVER DUE TO 409 ERRORS |
| LI80996 | CATALOG SYNCHRONIZATION PERFORMANCE IMPROVEMENTS |
| LI80997 | MULTIPLE WEBHOOK CALLS IN PARALLEL MAY RESULT IN SYNCHRONIZATION FAILURES |
API Connect v2018.4.1.5
Release Date: 29 April 29 2019
Status: Available
This fix pack contains internal development fixes and the following field APARs:
Status: Available
This fix pack contains internal development fixes and the following field APARs:
| APAR | Summary |
| LI80573 | RACE CONDITION IN THE FILE SYNCHRONIZATION OF PORTAL SITES |
| LI80669 | WHEN DELETING PRODUCT IN API MANAGER, THE MESSAGE "PRODUCT WAS DELETED" NOT BEEN TRANSLATED TO BROWSER'S LANGUAGE: GERMAN |
| LI80682 | GATEWAY SNAPSHOTS CANNOT BE CREATED IF GLOBAL POLICY HOOKS ARE PRESENT |
| LI80701 | UPGRADE PATH MISSING THE ORPHAN WEBHOOK FIX |
| LI80706 | ENSURE THAT APICUP AND PLAN VERSION MATCH |
| LI80721 | EMAIL ADDRESS VALIDATION WHEN TRYING TO RESET PASSWORD IS CASE SENSITIVE |
| LI80723 | CANNOT CONFIGURE NEW SERVICE IN CLOUD MANAGER IF TOP DOMAIN OF ENDPOINT CONTAINS DASH |
| LI80725 | DEVELOPER PORTAL BACKUP PROCESS DELETING LATEST BACKUP FILE |
| LI80726 | SWITCH POLICY EDITOR IS NOT USING PREVIOUS DEFINED RULE(S) |
| LI80727 | IBM API CONNECT DEVELOPER PORTAL SYSTEM PROXY SETTINGS ARE NOT SAVED CORRECTLY |
| LI80738 | GENERATED SOAP 1.2 FAULT RESPONSES FAIL SOAP SCHEMA VALIDATION |
| LI80740 | OAUTH REDIRECT URL(S) NOT SAVED IN THE APPLICATION DASHBOARD OF THE DEVELOPER PORTAL DUE TO A TIMING ISSUE |
| LI80741 | DEVELOPER PORTAL DISPLAYING UNUSABLE MENU LINKS ON APPS DASHBOARD |
| LI80745 | "MEMBER FOR" AND "LAST ACCESS" FIELDS ON DEVELOPER PORTAL PEOPLE PAGE SHOWS DIFFERENT DATE TIME AFTER SWITCHING BROWSER LANGUAGE |
| LI80746 | PREVENT LANGUAGE DELETION IN PORTAL |
| LI80747 | API CONNECT GATEWAY SERVICE GOES TO PENDING STATE USING ENCRYPTED PRIVATE KEY |
| LI80749 | PORTAL CAN BLOCK USER LOGIN WHEN NGINX CONTROLLER DIRECTS TO DIFFERENT WORKER NODE |
| LI80751 | ERROR WHILE UPLOADING FILE OF TYPE CER, PEM OR CRT IN REGISTER FORM IN DEVELOPER PORTAL |
| LI80752 | OCCASIONAL "EXPECTED ERROR" MESSAGE WHEN DISPLAYING THE APPLICATION LIST AFTER DELETING AN APPLICATION |
| LI80754 | PORTAL NOT SENDING EMAILS TO SUBSCRIBERS |
| LI80758 | ERRORS SHOULD BE REPORTED IF "APIC CREATE:API --WSDL |
| LI80761 | DEVELOPER PORTAL OAUTH GET TOKEN CALLS DO NOT RETURN CORS MESSAGE IF THERE IS NO RESPONSE FROM THE SERVER |
| LI80762 | FIX TRANSLATION FOR API MANAGER ASSEMBLY TEST TOOL AUTHORIZE BUTTON |
| LI80763 | UNABLE TO ADD NEW FIELDS TO CONSUMER ORGANIZATION IN DEVELOPER PORTAL |
| LI80767 | FOREACH IN SOURCE VIEW OF DESIGNER IN APIM IS NOT SHOWING PROPERLY |
| LI80768 | UNABLE TO SAVE CHANGES TO PASSWORD POLICY ON DEVELOPER PORTAL |
| LI80770 | CONFIGURING THE ACTIVITY LOG OF AN API WITH GERMAN LANGUAGE SETTING RETURN ERROR IN TESTING |
| LI80772 | APIM TEST TOOL OAUTH AUTHORIZE BUTTON DOES NOT WORK AS EXPECTED |
| LI80775 | ON DEVELOPER PORTAL AFTER CHANGE ORGANIZATION OWNER, THE OLD OWNER IS NOT PROPERLY ASSIGNED TO THE NEW ROLE |
| LI80786 | CUSTOM FIELDS NOT POPULATED IN @PARAM NODEINTERFACE $NODE IN HOOK_APIC_APP_CREATE |
| LI80794 | ERRORS WHEN EDIT OR CREATE CONTENT ON PORTAL SITE |
| LI80810 | UNABLE TO CREATE LDAP USER REGISTRY WITH CONFIGURATIONS USING AUTHENTICATED BIND |
| LI80811 | INGRESS ANNOTATIONS WITHIN PORTAL EXTRA-VALUES-FILE ARE NOT PROPERLY APPLIED ON API CONNECT V2018.X |
| LI80822 | SFTP CONNECTIONS ONLY ERROR WHEN ATTEMPTING PORTAL BACKUP |
| LI80823 | BAD REQUEST ERROR MAY RETURN INCORRECT DETAILS IN RESPONSE BODY |
API Connect v2018.4.1.4
Release Date: 28 March 2019
Status: Available
This fix pack contains internal development fixes and the following field APARs:
Status: Available
This fix pack contains internal development fixes and the following field APARs:
| APAR | Summary |
| LI80450 | THE PRODUCT / API YAML FILE DOWNLOADED FROM API MANAGER UI FAILS TO PUBLISH |
| LI80617 | "MY ORGANIZATION" IS NOT ACCESSIBLE AFTER AN UNSUCCESSFUL ATTEMPT TO DELETE A CONSUMER ORG USER USING THE TOOLKIT |
| LI80620 | CIRCULAR REFERENCES IN A JSON SCHEMA CAUSE THE VALIDATE POLICY TO FAIL |
| LI80622 | UNABLE TO DELETE AUTO PRODUCT AFTER RENAMING ITS API |
| LI80634 | APICUP INSTALLER DOES NOT VERIFY VERSION |
| LI80638 | PROBLEM ACTIVATING A DEVELOPER PORTAL USER AFTER SIGNING UP THE USER USING THE CONSUMER REST API |
| LI80641 | PORTAL APPEARANCE SETTINGS PAGE SHOWS UNEXPECTED ERROR |
| LI80642 | CREATING AN API BASED ON A WSDL FAILS WITH AN UNDEFINED NAMESPACE |
| LI80653 | GETVARIABLE FUNCTION DOES NOT ALWAYS WORK WITH REQUEST PARAMETERS |
| LI80654 | INVALID LINK IN EMAIL NOTIFICATION WHEN USER DISABLE AND ENABLE APPLICATIONS IN API MANAGER |
| LI80656 | USER INTERFACE PERFORMANCE LATENCY CAN BE SEEN WHEN TYPING IN FIELD TEXT BOXES OF THE API MANAGER |
| LI80657 | SOAP API CREATION FROM THE API CONNECT TOOLKIT FAILS IF THE ENCODING OF THE FILE DOES NOT MATCH THE ENCODING OF THE XML DIRECTIVE |
| LI80658 | PUTTING X-IBM-LANGUAGES IN PRODUCT CAUSE THE PRODUCT FAILED TO PUBLISH |
| LI80659 | UI OPERATION/RESPONSES NOT DISPLAYED CORRECTLY AND CANNOT BE EDITED FOR APIS CREATED FROM A WSDL FILE |
| LI80660 | NOT ALL SITES MAY BE BACKED UP DURING THE SCHEDULED PORTAL BACKUP PROCESS |
| LI80663 | CANNOT PUBLISH AUTOGEN PRODUCT TO SANDBOX WHEN HOST VALUE DELETED |
| LI80665 | WWW POD ADMIN CONTAINER FAILS TO START AFTER PORTAL UPGRADE |
| LI80668 | USING X-IBM-LANGUAGES IN PRODUCT AND API, DEVELOPER PORTAL DOESN'T DISPLAY THE MATCHING LANGUAGE'S WORDING |
| LI80671 | UPDATE TO THIRD PARTY COMPONENT IN DEVELOPER PORTAL |
| LI80676 | CREATE SOAP API FROM WSDL WITH NO EXTERNAL REFERENCES FAILING IN API CONNECT |
| LI80677 | TRIGGERING DDR MAY FAIL TO FULLY RE-SYNCHRONIZE A DATAPOWER GATEWAY |
| LI80681 | API CONNECT 2018.4.1.3 PORTAL ADMIN USER ACTIVATION EMAIL FOR "YOUR NEW SITE" IS NOT SENT |
| LI80683 | ADD TIMESTAMP COLUMN IN PRODUCTS LIST PAGE |
| LI80686 | CANNOT CREATE CASSANDRA-OPERATOR ROLE IN THE K8 INSTALLATION WHICH RESTRICTS ACCESS TO NODE AND STORAGE CLASS |
| LI80690 | CONSUMER ORGANIZATION MEMBER INVITED AS 'DEVELOPER' IS SEEN WITH 'ADMINISTRATOR' ROLE UNTIL MEMBER INVITATION IS ACCEPTED |
| LI80694 | ONE POD DID NOT CREATE THE NEW 4.1.3 DRUPAL DIRECTORY |
| LI80696 | API CONNECT DEVELOPER PORTAL ALLOWS THE USER LANGUAGE TO BE SET TO NULL |
| LI80697 | CHANGING LANGUAGE SETTING IN PORTAL USER PROFILE RETURNS "ADDITIONAL PROPERTY PASSWORD IS NOT ALLOWED" ERROR |
| LI80699 | PORTAL TRY IT DOES NOT GENERATE FOR DATE PARAMETER |
| LI80702 | SEND BUTTON OF "TRY IT" FEATURE IN DEVELOPER PORTAL IS DISABLED |
| LI80703 | DISABLE OF FORUM MODULE DOES NOT WORK ON DEVELOPER PORTAL |
| LI80704 | UNABLE TO PUBLISH API WITH EDITED OPERATION DESCRIPTION |
| LI80709 | UNABLE TO RESET PASSWORD USING "FORGOT PASSWORD" LINK |
| LI80711 | INCREASE FS.INOTIFY.MAX_USER_WATCHES' |
| LI80712 | DEPLOYING API CONNECT ON KUBERNETES WITH INGRESS OF V0.21 OR NEWER MAY CAUSE HTTP 404 |
| LI80713 | PORTAL ACCOUNT CREATION PASSWORD CONSTRAINTS UNEXPECTED BEHAVIOR |
| LI80719 | UNABLE TO SWITCH USER REGISTRIES ON SIGN IN / UP PAGES |
| LI80722 | UPDATING AN EXISTING OIDC USER REGISTRY USING THE REST API OR THE TOOLKIT FAILS WITH INTERNAL ERROR |
| LI80729 | CONFIGURING A THIRD-PARTY OAUTH PROVIDER FAILS |
| LI80730 | APPLICATIONS UPDATE HOOK IS TRIGGERED WHEN CREATING AN APPLICATION |
| LI80731 | UNABLE TO ADD A BLOCK TO A PAGE |
| LI80743 | API CONNECT IMPACTED BY DRUPAL SA-CORE-2019-004 |
| LI80744 | SA-CONTRIB-2019-033 |
| LI80755 | MULTIPLE PHP VULNERABILITIES |
| LI80765 | KUBERNETES CVE-2019-1002100 |
| LI80766 | INFORMATION DISCLOSURE CVE-2019-4051 |
API Connect v2018.4.1.3
Release Date: 4 March 2019
Status: Available
This fix pack contains internal development fixes and the following field APARs:
Status: Available
This fix pack contains internal development fixes and the following field APARs:
| APAR | Summary |
| LI80453 | API CONNECT 2018.3.6 DEVELOPER PORTAL DOES NOT SEND NOTIFICATIONS VIA EMAIL SERVER |
| LI80513 | DEVELOPER PORTAL BACKUPS MAY FILL UP DISK SPACE |
| LI80519 | API CONNECT 2018.4.1 USING SPACES STAGING ERROR ANOTHER GATEWAY SERVICE (SERVICENAME) NOT CONFIGURED FOR THE SPACE |
| LI80560 | STAGING PRODUCT TO SPACE FROM UI FAILS WHEN CATALOG PRODUCTION MODE ENABLED |
| LI80569 | DEVELOPER PORTAL CREATION FAILS USING SMTP CREDENTIALS WITH SLASH CHARACTER |
| LI80571 | CLOUD MANAGER ROLE DEFAULTS PAGE, FOR A CUSTOM ROLE AFTER CLICK THE ">" TO VIEW ITS PERMISSIONS A BLANK PAGE DISPLAYED |
| LI80576 | SUBSCRIPTION LIST MISSING SUBSCRIBED PRODUCT AFTER THE "REPLACE WITH" OPERATION |
| LI80577 | ASSEMBLY TEST TOOL DOES NOT SHOW FORM FIELD FOR SETTING "CONTENT-TYPE" FOR THE REQUEST MESSAGE |
| LI80579 | OVERRIDE DOWNLOADED YAML FILE WITHOUT WARNING |
| LI80586 | CUSTOM FIELD VALUES ARE NOT SAVED DURING USER REGISTRATION |
| LI80588 | ADDING GATEWAY TO THE CATALOG AFTER REMOVING IT CAN THROW 409 ERROR UNDER CERTAIN CONDITIONS |
| LI80589 | WHEN HAS 2 ANALYTICS SERVICE, APIM SHOW SAME ANALYTICS DATA |
| LI80600 | BROWSER LANGUAGE SETTING NOT TAKING PRECEDENCE OVER USER LANGUAGE SETTING IN PORTAL |
| LI80605 | ERROR CONFIGURE NODE MAP: MESSAGE WARNING |
| LI80606 | ASSEMBLY EDITOR IN V2018.X DOES ALLOW TO ADD A DYNAMMIC API PROEPRTY IN TLS PROFILE |
| LI80613 | DUPLICATE APPLICATIONS MAY BE CREATED WHEN YOU CREATE FROM DEVELOPER PORTAL |
| LI80615 | CATCH BLOCK DOES NOT APPEAR IN API ASSEMBLE TAB |
| LI80618 | PORTAL CREATE NEW APPLICATION SCREEN LOCKED AND DISABLED |
| LI80623 | AVOID CASSANDRA OUT OF DIRECT MEMORY ERROR BY REDUCING THE FETCH SIZE |
| LI80624 | REPUBLISHING A SOAP API WITH UPDATE WILL RESULT IN A 400 ERROR "FAILED TO PUBLISH PRODUCT" |
| LI80625 | AFTER CREATING A CATALOG THE NOTIFICATIONS DOES NOT TRANSLATE THE MESSAGE IN GERMAN |
| LI80626 | ERROR DELETING A DEVELOPER ORGANIZATION MEMBER PREVIOUSLY INVITED AND ACTIVATED |
| LI80627 | WHEN STORING THE CONFIGURATION IN A DIRECTORY INCLUDING SPACES RECEIVES ERROR |
| LI80629 | DYNAMIC-GATEWAY-SERVICE SSL ISSUE WITH ANALYTICS-LB |
| LI80630 | SUPPORT DYNAMIC RECONFIGURATION OF MEMORY SETTINGS FOR CASSANDRA CLUSTER |
| LI80631 | VALIDATE POLICY DOES NOT SAVE THE DEFINITION |
| LI80635 | DEVELOPER PORTAL PASSWORD POLICY AND CAPTCHA ENFORCEMENT ISSUE WHEN CREATING ACCOUNT |
| LI80639 | DEV PORTAL EXPLORER ADDING SUPPORT FOR COLLECTIONFORMAT CSV IN ARRAYS |
| LI80640 | UPGRADE PERMISSIONS FAILURE DELETING OLD PLATFORMS |
| LI80645 | SUPPORT AN UNPRIVILEGED SECURITY CONTEXT IN PORTAL CHARTS |
| LI80646 | DEVELOPER PORTAL APPLICATION PAGE UI NOT CORRECTLY DISPLAYED AND OCCUPIED BY ENLARGED SVG |
| WHEN CREATING AN APPLICATION ON PORTAL, WE ARE USING HOOKS TO RETRIEVE THE INFO FOR THAT APP IN OUR 3RD PARTY OIDC PROVIDER |
API Connect v2018.4.1.2
Release Date: 1 February 2019
Status: Available
This fix pack contains internal development fixes and the following field APARs:
Status: Available
This fix pack contains internal development fixes and the following field APARs:
| APAR | Summary |
| LI80334 | API MANAGER HAS 2 CATALOGS, THE ANALYTIC TAB DISAPPEAR AFTER FLIPPING AORUND THE CATALOG |
| LI80383 | NOTIFICATIONS AND ERRORS MESSAGES STILL IN ENGLISH WITH GERMAN LANGUAGE SETTING |
| LI80414 | INTERNAL NAMES ARE DISPLAYED IN CATALOG PRODUCT VIEW |
| LI80441 | SYSTEM FAILED TO DELETE ANALYTICS LOG WHEN OLDEST API CALL DATA KEPT IS SET TO 7 DAYS |
| LI80449 | LOCKING PROBLEM WITH SERVICE REGISTRATION FLOW |
| LI80461 | HEADING OF DEVELOPER PORTAL OVERLAP ON CONTENT |
| LI80471 | GLOBAL PARAMETERS NOT VISIBLE IN PATH OPERATION |
| LI80472 | DEVPORTAL EXPLORER ADDING SUPPORT FOR COLLECTIONFORMAT CSV IN ARRAYS |
| LI80486 | DEVELOPER PORTALS FLOOD CONTROL FUNCTION BLOCKS THE PORTALS SERVER IP |
| LI80494 | SOME OF THE DATAPOWER GATEWAY 2018.4.1 PATCH CALLS TAKE LONGER THAN 1 MINUTE |
| LI80495 | CATALOG CANNOT BE SYNCED AFTER RE-PUBLISHING SAME PRODUCT WITH VARYING AMOUNTS OF APIS TO A SANDBOX CATALOG |
| LI80496 | EVEN IF TLS 1.0 AND 1.1 IS DISABLED FOR API CONNECT GATEWAY SERVICE, IT IS STILL ALLOWED. |
| LI80497 | CANNOT CHANGE/EDIT THE DEFAULT PLAN IN THE PRODUCT |
| LI80498 | UNABLE TO INPUT X-CLIENT-CERTIFICATE IN TRY IT TAB OF APIS |
| LI80500 | UNABLE TO DOWNLOAD A PRODUCT YAML FILE FROM MANAGER UI |
| LI80501 | API MANAGER UI - NAME OF THE PRODUCT PLAN WILL BECOME 0 |
| LI80503 | CASSANDRA POD FAILS WITH NO SPACE LEFT ON DEVICE ERROR |
| LI80504 | GENERATING OF THE OAUTH2 TOKEN FOR APPLICATION GRANT TYPE DOES NOT WORK USING THE DEVELOPER PORTAL 'TRY IT' |
| LI80507 | UNABLE TO UPDATE PRODUCT YAML PROPERLY ON UI |
| LI80508 | UNABLE TO UPDATE THE DESCRIPTION OF OPERATION IN DEVELOP TAB |
| LI80512 | UNABLE TO STAGE THE PRODUCT AFTER CREATE NEW VERSION OF API WITHOUT "SAVE" |
| LI80514 | THE DESCRIPTION OF PLANS CONTAINED IN PRODUCT YAML FILE SHOULD BE VISIBLE IN DEVELOPER PORTAL |
| LI80515 | IN DEVELOPER PORTAL, CANNOT USE TOKENS IN THE EMAIL WHEN "EMAIL SUBSCRIBERS" |
| LI80516 | OUT OF MEMORY ERROR WHEN UPGRADING WITH APICUP |
| LI80519 | API CONNECT 2018.4.1 USING SPACES STAGING ERROR ANOTHER GATEWAY SERVICE (SERVICENAME) NOT CONFIGURED FOR THE SPACE |
| LI80524 | THE EXAMPLE GENERATOR DOES NOT CORRECTLY HANDLE EXAMPLES FOR ALLOF PROPERTY |
| LI80527 | ACCESS TOKEN SHOULDN'T BE INCLUDED IN THE GET /ANALYTICS/INIT REQUEST |
| LI80530 | REMOVING VIEW ACCESS FOR SETTINGS FROM DEVELOPER ROLE CAUSE HTTP 403 WHILE ACCESSING CATALOGS |
| LI80531 | ON DEVELOPER PORTAL, AFTER DISABLE LANGUAGE DETECTION FOR BROWSER THE LOGIN PAGE FOR ADMIN NO LONGER WORKS |
| LI80532 | APIC 2018 MANAGEMENT NODE UPGRADE FROM 4.1.0 TO 4.1.1 DOES NOT COMPLETE IN A SINGLE NODE SETUP WITHOUT INTERNET CONNECTION |
| LI80533 | API MANAGER UI - API SECTION OF EACH OF THE PRODUCT DOES NOT DISPLAY THE API UNDER THE PRODUCT |
| LI80534 | CLI COMMAND FOR FORGOT PASSWORD MISSING |
| LI80535 | UPGRADE TO 2018.4.1.0 FAILED DUE TO OUT OF DIRECT MEMORY ISSUE IN CASSANDRA |
| LI80538 | CASSANDRA OPERATOR POD IS BEING CONSTANTLY RESTARTED DUE TO OOM |
| LI80539 | ADD DESCRIPTION IN API CHANGE SETTINGS IN PARAMETERS SECTION |
| LI80540 | PORTAL WEBHOOKS NOT WORKING |
| LI80541 | IBM API CONNECT REDIRECT TO INCORRECT PAGE AFTER CLICKING "BACK TO SIGN IN" IN RESET PASSWORD PAGE |
| LI80545 | DEVELOPER PORTAL DISPLAY ERROR "THE WEBSITE ENCOUNTERED AN UNEXPECTED ERROR..." WHEN LOGIN USING A BLOCKED ACCOUNT |
| LI80547 | EXISTING CERTIFICATE ASSOCIATED WITH APPLICATION DOES NOT DISPLAY IN DEVELOPMENT PORTAL |
| LI80549 | ERROR WHEN PUBLISHING AN API CREATED WITH ´SAVE AS A NEW VERSION´ |
| LI80551 | POP-UP WITH UNSAVED CHANGES, EVERY TIME YOU COPY FROM UI |
| LI80552 | CREATING AN ACCOUNT IN PORTAL WITH MORE THAN TWO CONSECUTIVE REPEATING CHARACTERS IN PASSWORD IT FAIL THE AUTHENTICATION |
| LI80555 | VISIT DEVELOPER PORTAL WITHOUT LOGIN, CLICK SUBSCRIBE IN PUBLIC PRODUCT THE HTTP 302 "SET-COOKIE" HEADER HAS NO SECURE FLAG |
| LI80556 | API MANAGER EDIT API PAGE SHOWS BLANK PAGE WHEN "EXECUTE: []" IN THE ASSEMBLY SECTION OF THE YAML |
| LI80558 | USER PROFILE DATA DOES NOT UPDATE FOR OIDC/LDAP/AUTH URL |
| LI80559 | UNABLE TO USE API DESIGNER V2018.X FOR ON PREM. |
| LI80565 | TRYIT FEATURE DOES NOT WORK APIC 2018.3.7 |
| LI80567 | UNDER CERTAIN CIRCUMSTANCES, RESETTING PASSWORD THROUGH API MANAGER UI RESETS IT FOR THE WRONG USER REGISTRY |
| LI80568 | EMAIL SUBSCRIBER FUNCTION TO SEND EMAILS MEMBERS DO NOT WORK PROPERLY. |
| LI80574 | BACKUP FOR CERTAIN PORTAL SITES FAILS |
| LI80575 | X-EXAMPLE IS DISPLAYED TWICE IN THE DEVELOPER PORTAL |
| LI80580 | ERRORS IN API CONNECT EXPLORER WHEN WSDL USES CIRCULAR DEFINITION |
| LI80583 | PRODUCT STATE CHANGES NOT REFLECTED IN DEVELOPER PORTAL |
| LI80590 | API CONNECT MYSQL AND DRUPAL VULNERABILITIES |
| LI80592 | CONSUMER ORGANIZATION FIELD NOT HONORED ON SIGN IN FORM AFTER ORGANIZATION OWNER INVITED |
| LI80736 | IBM API CONNECT AFFECTED BY NODE.JS VULNERABILITIES |
API Connect v2018.4.1.1
Release Date: 14 December 2018
Status: Available
This fix pack contains internal development fixes and the following field APARs:
| APAR | Summary |
| LI80314 | CONCURRENT SUBSCRIPTIONS IN DEVELOPER PORTAL SHARES USER STATE ACROSS LOGINS |
| LI80330 | DEVELOPER PORTAL TEST TOOL API RESPONSE IS NOT PRETTIFIED |
| LI80331 | INCORRECT MAPPING OF DATETIME FORMAT IN TEST TOOL PARAMETER |
| LI80357 | ACCESSTOKEN API (IF EXPOSED) ALLOWS ANYONE TO CREATE A TOKEN |
| LI80425 | API CONNECT V2018.3.* IF HOST IS CONFIGURED WITH MULTIPLE NETWORK INTERFACES, NETWORK ROUTING ISSUE OCCURS |
| LI80433 | UNABLE TO CHANGE THE ORGANIZATION OWNER IN PORTAL |
| LI80439 | EXAMPLE GENERATOR DOES NOT HONOUR SWAGGER XML TAGS IN DEFINITIONS |
| LI80443 | APP NAME CREATED WITH WHITE SPACES AT END IT IS NOT DISTINGUISHED FROM AN OTHER ONE WITH SAME NAME |
| LI80447 | DEVELOPER PORTAL TRY IT FEATURE DOES NOT ALLOW APPLICATION SELECTION WHEN USING CUSTOM CLIENT-ID NAME |
| LI80454 | CANNOT UPDATE TITLE OR SUMMARY FOR A CATALOG OR SPACE |
| LI80456 | UNABLE TO GET SECRET ID USING CUSTOM MODULE |
| LI80462 | CANNOT SAVE A WSDL API AS A NEW VERSION - DELIVERY DATE |
| LI80466 | KUBERNETES VULNERABILITY |
| LI80467 | DELETING OAUTH PROVIDER CONFIGURATION CAUSES ISSUE |
| LI80473 | CANNOT CREATE DEVELOPER PORTAL USER WITH AUTHURL REGISTRY |
| LI80474 | BLUEMIX-ANALYTICS.MIN.JS IS FAILED FOR LOADING AT THE TOP PAGE IN MANAGEMENT |
| LI80475 | AN EXTRA HEADER IS ADDED IN 'TRY IT' FUNCTION |
| LI80483 | ERROR OCCURS WHEN VIEWING SUBSCRIPTIONS OF APPLICATION IN DEVELOPER PORTAL |
| LI80487 | TLS CERTIFICATE ISSUES WHEN SIGNING UP MEMBERS WITH AUTHENTICATION URL |
| LI80489 | AN OAUTH PROVIDER CANNOT BE DELETED AFTER IT WAS ONCE ASSOCIATED WITH A SPACE AND THEN DISSOCIATED |
API Connect v2018.4.1.0
Release Date: 15 November 2018
Status: Available
This fix pack contains internal development fixes and the following field APARs:
| APAR | Summary |
| LI80582 | MAP POLICY MANIPULATION OF XML SCHEMAS CAUSED PERFORMANCE DEGRADATION |
| LI80474 | BLUEMIX-ANALYTICS.MIN.JS IS FAILED FOR LOADING AT THE TOP PAGE IN MANAGEMENT |
| LI80435 | API CONNECT 2018.3.7 KUBERNETES INSTALL ON AWS EKS FAILS WITH PERMISSION ERROR |
| LI80434 | SOAP API: TEST TOOL IN ASSEMBLY EDITOR MANAGER UI DOESN'T RENDER/LOAD PROPERLY AND SHOWS AN EMPTY BLANK PANEL |
| LI80430 | INVALID DATA IN WEBHOOK TABLE CAUSING INTERNAL 500 ERROR |
| LI80426 | AUTHENTICATION ON DEVPORTAL WITH OIDC MAY FAIL WITH HTTP 400 |
| LI80422 | DEVELOPER PORTAL "EMAIL SUBSCRIBERS" NOT WORKING AS EXPECTED AND REPORTING ERRORS |
| LI80419 | RECEIVED ERROR "MEMBER IS NOT SET" WHEN CHANGING AN ORGANIZATION MEMBER'S ROLE ON DEVELOPER PORTAL |
| LI80418 | API CONNECT V2018.3.7 MEMBER REMOVED FROM CONSUMER ORGANIZATION SHOWED AS PENDING |
| LI80414 | INTERNAL NAMES ARE DISPLAYED IN CATALOG PRODUCT VIEW |
| LI80413 | "CLOUD ADMIN" PROVIDER ORGANIZATION CAN BE INCORRECTLY SHOWN IN API MANAGER |
| LI80412 | CONDITIONAL POLICIES ISN'T LOADING CORRECTLY IN API DESIGNER |
| LI80411 | CANNOT HAVE MULTIPLE VERSIONS OF THE SAME API IN A PRODUCT |
| LI80410 | ON DEVELOPER PORTAL, AFTER LOGIN AS ADMINISTRATOR ROLE, THE "CANCEL ACCOUNT" BUTTON DOESN'T WORK |
| LI80406 | IN DEVELOPER PORTAL, UNABLE TO USE ORGANIZATION AND ACCOUNT DROPDOWN ON THE "API PRODUCTS" PAGE |
| LI80400 | UNRECOGNIZABLE NAMES IN THE DROP DOWN LIST FOR THE CATALOG CREATION OWNER |
| LI80398 | INVITED MEMBERS USING AN AUTHENTICATED URL REGISTRY SHOW IN CMC / APIM AS "UNDEFINED" |
| LI80393 | ORGANIZATION MEMBER CANNOT BE RE-ADDED AFTER INITIAL INVITATION EXPIRES |
| LI80392 | THE INTERNAL PLAN NAME INSTEAD OF THE TITLE IS DISPLAYED FOR APPLICATION SUBSCRIPTIONS IN THE DEVELOPER PORTAL |
| LI80391 | INTERNAL PLAN NAME INSTEAD OF THE TITLE IS DISPLAYED FOR SUBSCRIPTIONS IN THE APPLICATION PANEL UNDER THE CATALOGS |
| LI80385 | ANALYTICS SERVICE NAME NOT DISPLAYED CORRECTLY WHEN ASSOCIATED WITH GATEWAY |
| LI80383 | NOTIFICATIONS AND ERRORS MESSAGES STILL IN ENGLISH WITH GERMAN LANGUAGE SETTING |
| LI80382 | THE SWITCHING OF PRODUCTS VISIBILITY DOESN'T GET REFLECTED IN THE DEVELOPER PORTAL |
| LI80380 | INVITING MEMBERS USING SAME EMAIL ADDRESS AND ACCEPTING WITH DIFFERENT COMBINATION OF UPPER/LOWER CASE CREATES MULTIPLE US |
| LI80377 | STATUS OF SUBSCRIPTION WHEN APPROVAL IS REQUIRED IS NOT SHOW IN DEVELOPER PORTAL |
| LI80375 | THE LOGIN WINDOW FOR THE MANAGER UI DOESN'T SHOW NAME OF THE "DEFAULT" LDAP REPOSITORY |
| LI80369 | PORTAL DEVELOPER IS BROKEN AFTER ADDING A HARD LINK IN DRUPAL'S MAIN MENU |
| LI80364 | LOG IN TO DEVELOPER PORTAL FAILS WHEN USER REGISTRY WAS CREATED IN THE CLOUD MANAGER |
| LI80363 | USE AUTHENTICATION GROUP OPTION REMAINS UNCHECKED IN APIC CLOUD MANAGER |
| LI80361 | API CONNECT IS AFFECTED BY A DENIAL OF SERVICE VULNERABILITY |
| LI80358 | DEVELOPER PORTAL "TRY IT" FUNCTION HANGS ON BAD JSON RESPONSE |
| LI80356 | IMPOSSIBLE TO GENERATE THE SAMPLE BODY PARAMETER FOR API CREATED FROM WSDL |
| LI80352 | INVOKE BUTTON IS NOT ACTIVE ON TEST TOOL USING SANDBOX CATALOG |
| LI80351 | WHEN PUBLISHING PRODUCT ERROR "400 THE DRAFT_API PROPERTY IS REQUIRED." |
| LI80350 | 504 ERROR IN MANAGER USER INTERFACE CAUSED DUE TO CASSANDRA PODS GOING DOWN |
| LI80348 | HOW CAN WE GET THE API-GW WORKING AFTER IT LOSES THE CONNECTION TO THE API MANAGEMENT SERVER |
| LI80341 | LARGE PRODUCTS NOT APPEARING IN PORTAL AFTER PUBLISHING AND SUBSEQUENT PUBLISHES FAILING. |
| LI80337 | ASSEMBLY TOOL TEST INVOKE SENDING WRONG HEADERS FOR SOAP/XML |
| LI80329 | HAVING TO RELOAD THE PAGE TO REFRESH ASSEMBLY TEST TOOL EDITOR AND ITS DROP DOWN LISTS |
| LI80327 | UNABLE TO ADD CLOUD MANAGER MEMBER WHEN LDAP IS CONFIGURED |
| LI80326 | REMOVE ALL PRODUCTS OF ALL CATALOGS THAT USED THE GATEWAY |
| LI80325 | IN API MANAGER UI, MULTIPLE VERSIONS OF THE SAME API CAN'T BE ADDED INTO THE SAME PRODUCT |
| LI80322 | NOT POSSIBLE TO USE ROLE TO LIMIT PERMISSIONS ON A SPACE |
| LI80307 | THE OAUTH PROVIDER CONTAINS AN OPENAPI DEFINITION WITH VALIDATION ERRORS |
| LI80306 | KUBERNESTES IS STUCK IN INSTALLATION IN PROGRESS |
| LI80303 | ERROR 504 WHILE ATTEMPTING TO CONFIGURE LOGSTASH |
| LI80295 | IN TASK APPROVAL, USER AND CONSUMER ORGANIZATION ARE MISSING |
| LI80294 | CASSANDRA HIGH TOMBSTONES MAY PREVENT PUBLISHING TO THE GATEWAY SERVICE CONFIGURED FOR THE CATALOG |
| LI80293 | MENU ENTRY TO VIEW ANALYTICS IS ALWAYS VISIBLE EVEN AFTER REMOVAL OF USER PERMISSIONS |
| LI80292 | LOCALIZATION- MISSING GERMAN TRANSLATIONS... MENU AND FIELDS ARE SHOWN IN ENGLISH |
| LI80288 | 400 SERVER ERROR ON CREATE ORGANIZATION PAGE SUBMIT |
| LI80284 | APIM & CMC UI PERFORMANCE ISSUE |
| LI80278 | APIC 2018.2.10 USER CAN'T ACCESS TO MANAGER UI NOR CLOUD MANAGER UI |
| LI80273 | PORTAL WEB IS DOWN, AND GETTING "UNABLE TO CONNECT TO THE SERVER: EOF" WHEN RUNNING "KUBECTL GET PODS") |
| LI80266 | APIC VERSION 2018.3.2 CANNOT CREATE EMAIL SERVER |
| LI80265 | WITH 2018.3.3, API ANALYTICS NOT VISIBLE STATUS 503 |
| LI80261 | NOT ABLE TO DELETE THE DEFAULT PROPERTY "TARGET-URL" IN AN API |
| LI80260 | CATALOG SPECIFIC VALUE IN PROPERTIES CANNOT BE DELETED IN UI |
| LI80256 | WSDL SOAP:ADDRESS LOCATION URL IS NOT REPLACED WITH THE CORRECT API GATEWAY ENDPOINT URL |
| LI80237 | UNABLE TO INSTALL HELM CHART: CASSANDRA-OPERATOR |
| LI80236 | ANALYTICS STORAGE POD FAILS TO START ON A 16 GB OVA |
| LI80230 | ASSEMBLY INFORMATION DISAPPEARS AFTER SAVING THE API FROM THE DESIGN TAB |
| LI80229 | ADDING A POLICY AFTER ANOTHER POLICY IN CATCH BLOCK FAILS |
| LI80217 | USING CUSTOM CERTIFICATES FOR UIS (CLOUD MANAGER, API MANAGER, DEVELOPER PORTAL) IS NOT POSSIBLE |
| LI80199 | CASSANDRA MAY HIT TOMBSTONE_FAILURE_THRESHOLD FOR TABLE APIM.TRANSACTIONLOCK CAUSING CLIENTS CONNECTIVITY LOSS |
| LI80129 | VM RESTARTS CHANGE THE HOST SSH KEY, PROMPTING HOST IDENTITY HAS CHANGED WHEN YOU SSH IN. |
| LI79775 | CUSTOM FIELDS OF TYPE ADDRESS FIELD DURING APP REGISTRATION DO NOT WORK |
API Connect v2018.3.7
Release Date: 13 September 2018
Status: Available
This fix pack contains internal development fixes and the following field APARs:
| APAR | Summary |
| LI80206 | UNABLE TO DELETE BAD GATEWAY REGISTERED (504 ERROR FROM GATEWAY NOT ALLOWING TO DELETE) |
| LI80270 | IN SOME CASES, THE ASSEMBLY TOOL WILL DISPLAY DUPLICATE NAMES IN THE EXTENSION TYPE LIST |
| LI80280 | NO PRODUCTS SHOWN IN DEVELOPER PORTAL AFTER PUBLISH |
| LI80282 | OPTIONAL QUERY PARAMETERS MAY BE SET TO NULL WHEN NO VALUE IS PROVIDED IN TRY IT VIEW |
| LI80285 | RECEIVED ERROR WHEN TRYING TO EDIT ADMIN ACCOUNT'S EMAIL ADDRESS AND CLICK SAVE ON DEVELOPER PORTAL |
| LI80292 | LOCALIZATION - MISSING GERMAN TRANSLATIONS... MENU AND FIELDS ARE SHOWN IN ENGLISH |
| LI80293 | MENU ENTRY TO VIEW ANALYTICS IS ALWAYS VISIBLE EVEN AFTER REMOVAL OF USER PERMISSIONS |
| LI80295 | IN TASK APPROVAL, USER AND CONSUMER ORGANIZATION ARE MISSING |
| LI80307 | THE OAUTH PROVIDER CONTAINS AN OPENAPI DEFINITION WITH VALIDATION ERRORS |
| LI80315 | IN API CONNECT V2018.X: PRODUCT.HTML.TWIG IN CUSTOM THEME HAS NO EFFECT |
| LI80324 | APPROVAL MAIL CONTAINS WRONG LINK |
API Connect v2018.3.6
Release Date: 20 August 2018
Status: Limited Availability
This fix pack contains internal development fixes and the following field APARs:
| APAR | Summary |
| LI80199 | CASSANDRA MAY HIT TOMBSTONE_FAILURE_THRESHOLD FOR TABLE APIM.TRANSACTIONLOCK CAUSING CLIENTS CONNECTIVITY LOSS |
| LI80284 | APIM & CM UI PERFORMANCE ISSUE |
API Connect v2018.3.5
Release Date: 3 August 2018
Status: Available
This fix pack contains internal development fixes and the following field APARs:
| APAR | Summary |
| LI80218 | BM API CONNECT IS AFFECTED BY A CLICKJACKING VULNERABILITY (CVE-2018-1599) |
| LI80260 | CATALOG SPECIFIC VALUE IN PROPERTIES CANNOT BE DELETED IN UI |
| LI80261 | NOT ABLE TO DELETE THE DEFAULT PROPERTY "TARGET-URL" IN AN API |
| LI80265 | WITH 2018.3.3, API ANALYTICS NOT VISIBLE STATUS 503 |
| LI80272 | DRUPAL 8 RELEASE ON AUGUST 1ST, 2018 - DRUPAL-PSA-2018-07-30 |
| LI80288 | 400 SERVER ERROR ON CREATE ORGANIZATION PAGE SUBMIT |
| LI80291 | IBM API CONNECT IS VULNERABLE TO SERVER SIDE REQUEST FORGERY (CVE-2018-1789) |
API Connect v2018.3.4
Release Date: 27 July 2018
Status: Available
This fix pack contains internal development fixes and the following field APARs:
| APAR | Summary |
| LI80237 | UNABLE TO INSTALL HELM CHART: CASSANDRA-OPERATOR |
| LI80266 | APIC VERSION 2018.3.2 CANNOT CREATE EMAIL SERVER |
API Connect v2018.3.3
Release Date: 20 July 2018
Status: Available
This fix pack contains internal development fixes and the following field APARs:
| APAR | Summary |
| LI80228 | INVALID 'X-IBM-NAME' CREATED WHEN IMPORTING A SWAGGER FILE WITH AN API TITLE CONTAINING AN HYPHEN |
| LI80229 | ADDING A POLICY AFTER ANOTHER POLICY IN CATCH BLOCK FAILS |
| LI80230 | ASSEMBLY INFORMATION DISAPPEARS AFTER SAVING THE API FROM THE DESIGN TAB |
API Connect v2018.3.2
Release Date: 13 July 2018
Status: Available
This fix pack contains internal development fixes only. There are no field or security APARs included in the fix pack.
API Connect v2018.3.1
Release Date: 6 July 2018
Status: Available
This fix pack contains internal development fixes. In addition, this release includes the API Designer within the toolkit. API developers use the API management functions in the API Designer or the CLI to create draft API definitions for REST and SOAP APIs, or for OAuth provider endpoints that are used for OAuth 2.0 authentication. The API definitions can be configured to add the API to a Product, add a policy assembly flow (to manipulate requests/responses), and to define security options and other settings. APIs can then be tested locally before publishing to ensure they are defined and implemented correctly.
This fix pack also contains the following APAR fixes:
| APAR | Summary |
| LI80216 | TYPEERROR: CANNOT READ PROPERTY 'INFO' OF UNDEFINED AFTER USING THE REPLACE PRODUCT OPTION |
API Connect v2018.2.11
Release Date: 27 June 2018
Status: Available
This fix pack contains internal development fixes. In addition, this release includes the new DataPower API Gateway. The DataPower API Gateway is built specifically for the API use case, with resulting performance benefits. For the initial release, the most commonly used policies are offered, streamlining the gateway for the most common use case, the proxy API. Over time, further policies, and new capabilities, will be added. DataPower API Gateway was built and optimized for the cloud. Consider using this gateway if you are running applications in a public or private cloud and want to expose them as APIs.
For more information about this release, see API Connect Documentation: What's new in this release
API Connect v2018.2.10
Release Date: 8 June 2018
Status: Available
This fix pack contains internal development fixes only. There are no field or security APARs included in the fix pack.
API Connect v2018.2.9
Release Date: 1 June 2018
Status: Available
This fix pack contains internal development fixes only. There are no field or security APARs included in the fix pack.
API Connect v2018.2.8
Release Date: 25 May 2018
Status: Available
This fix pack contains internal development fixes and the following field APARs:
| APAR | Summary |
| LI80271 | IBM API CONNECT IS VULNERABLE TO DENIAL OF SERVICE ATTACKS VIA HTTPS-PROXY-AGENT/NEWRELIC@3.1.0 (CVE-2018-3739) |
API Connect v2018.2.7
Release Date: 18 May 2018
Status: Available
This fix pack contains internal development fixes only. There are no field or security APARs included in the fix pack.
API Connect v2018.2.6
Release Date: 11 May 2018
Status: Available
This fix pack contains internal development fixes only. There are no field or security APARs included in the fix pack.
API Connect v2018.2.5
Release Date: 4 May 2018
Status: Available
This fix pack contains internal development fixes and the following field APARs:
| APAR | Summary |
| LI80097 | IBM API CONNECT IS IMPACTED BY A RESOURCE LEAKAGE VULNERABILITY (CVE-2018-1548) |
API Connect v2018.2.4
Release Date: 27 April 2018
Status: Available
This fix pack contains internal development fixes and the following field or security APARs:
| APAR | Summary |
| LI80096 | DRUPAL PSA-2018-004 |
API Connect v2018.2.3
Release Date: 20 April 2018
Status: Available
This fix pack contains internal development fixes only. There are no field or security APARs included in the fix pack.
API Connect v2018.2.2
Release Date: 13April 2018
Status: Available
This fix pack contains internal development fixes only. There are no field or security APARs included in the fix pack.
API Connect v2018.2.1
Release Date: 6 April 2018
Status: Available
This fix pack contains internal development fixes only. There are no field or security APARs included in the fix pack.
API Connect v2018.1.0
Release Date: 30 March 2018
Status: Available
Initial release of IBM API Connect 2018.x.
Features:
- The ability to deploy API Connect microservices through Docker and managed with Kubernetes to take advantage of the auto-scaling capabilities of Kubernetes, while still having the option to deploy as an Open Virtualization Format (OVA) package.
- Advanced multi-cloud deployment capabilities with the ability to deploy portal, gateway, and analytics services separate from API Manager in various IBM and other cloud environments.
- Complete representational state transfer (REST) and command language interpreter (CLI) coverage of API Connect functionality for enhanced DevOps functionality.
Ensure that you have read and understood the installation instructions for OVAs and Containers before downloading and using the installation files. You can find detailed installation instructions in IBM API Connect Documentation -- Installing API Connect
[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSMNED","label":"IBM API Connect"},"Component":"Not Applicable","Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"2018.1.x;2018.2.x;2018.3.x;2018.4.x","Edition":"","Line of Business":{"code":"LOB45","label":"Automation"}}]
Was this topic helpful?
Document Information
Modified date:
02 March 2022
UID
swg22015525