APAR status
Closed as program error.
Error description
403 Forbidden is insufficient response to an oauth failure.
Local fix
Problem summary
Customers would run into this if they use the introspection endpoint as third-party OAuth Provider in Consumer API and get an error from that endpoint that included the changed error message in question. The final message to the original request included the changed error message.
Problem conclusion
Changed the error response to the original requester if there is an error on the third-party OAuth Provider. Message changed from "Internal Server Error" to "Forbidden". All customers using v5 APIC 5089+ and v5c on either v2018.4.1.13+ or v10.0.0.1 should see the change.
Temporary fix
Comments
APAR Information
APAR number
LI81594
Reported component name
API CONNECT ENT
Reported component ID
5725Z2201
Reported release
508
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt / Xsystem
Submitted date
2020-07-02
Closed date
2020-08-31
Last modified date
2020-08-31
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Fixed component name
API CONNECT ENT
Fixed component ID
5725Z2201
Applicable component levels
R508 PSY
UP
[{"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Product":{"code":"SSMNED","label":"IBM API Connect"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"508","Line of Business":{"code":"LOB45","label":"Automation"}}]
Document Information
Modified date:
29 September 2021