IBM Support

IT30815: OAUTH EMPTY USER ID CAN RESULT IN RELOAD OF FIRMWARE

Subscribe to this APAR

By subscribing, you receive periodic emails alerting you to the status of the APAR, along with a link to the fix after it becomes available. You can track this item individually or track all items by product.

Notify me when this APAR changes.

Notify me when an APAR for this component changes.

 

APAR status

  • Closed as program error.

Error description

  • If a user id is either corrupt or empty during oauth action you
    may trigger a reload of the firmware.
    

Local fix

  • Code a custom validation in user xslt/gws to check for a user id
    before taking any further authentication.
    

Problem summary

  • Unexpected or malformed values input into the OAtuh crediential
    fields may cause an Unexpected Reload of the device.
    

Problem conclusion

  • Protect inbound arguments from invalid entries which may cause
    an Unexpected Restart
    
    Fixed In: 2018-4-1-9
    

Temporary fix

Comments

APAR Information

  • APAR number

    IT30815

  • Reported component name

    DATAPOWER

  • Reported component ID

    DP1234567

  • Reported release

    18X

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt / Xsystem

  • Submitted date

    2019-11-07

  • Closed date

    2019-12-09

  • Last modified date

    2019-12-09

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

Fix information

  • Fixed component name

    DATAPOWER

  • Fixed component ID

    DP1234567

Applicable component levels

[{"Business Unit":{"code":"BU048","label":"IBM Software"}, "Product":{"code":"SSCXUFY","label":"General"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"18X","Edition":""}]

Document Information

Modified date:
09 December 2019