Download
Downloadable File
| File link | File size | File description |
|---|---|---|
Abstract
PH48187: LTPAToken validation failure for users with space characters in the user name caused by PH47867
Download Description
PH48187 resolves the following problem:
ERROR DESCRIPTION:
ERROR DESCRIPTION:
LTPAToken validation might fail for users with empty space characters in the username after an interim fix or fix pack containing APAR PH47867 is installed.
- Users that perform a login to authenticate to one Liberty server might fail to authenticate to other Liberty servers by using their LTPAToken2. Users would need to login again on other Liberty servers.
- If authentication cache is not enabled, a user can log in, but might fail to use their LTPAToken2 in subsequent requests to other servers or to the same server. In this case, the user might have to perform a new login on every request.
- Users with at least one of the following empty space characters in their username are affected:
- Space character, tab character, newline character, carriage-return character, and form-feed character.
- The username can be the short principal name or the full name of the user as in the DN for LDAP users.
| CWWKS4001I: The security token cannot be validated. This can be for the following reasons 1. The security token was generated on another server using different keys. 2. The token configuration or the security keys of the token service which created the token has been changed. 3. The token service which created the token is no longer available. |
PROBLEM SUMMARY:
USERS AFFECTED:
All users of IBM WebSphere Application Server Liberty - Security
All users of IBM WebSphere Application Server Liberty - Security
PROBLEM DESCRIPTION:
LTPAToken validation might fail for users empty space characters in the username after a fix for APAR PH47867 is installed.
LTPAToken validation might fail for users empty space characters in the username after a fix for APAR PH47867 is installed.
RECOMMENDATION:
Install an interim fix or fix pack that contains this APAR.
Install an interim fix or fix pack that contains this APAR.
CONCLUSION:
The Liberty runtime is updated to handle usernames containing empty space characters correctly.
The Liberty runtime is updated to handle usernames containing empty space characters correctly.
The fix for this APAR is targeted for inclusion in fix pack 22.0.0.9. Refer to the Recommended Updates page for delivery information.
The Open Liberty GitHub issue for this APAR is 21837.
This fix supersedes (includes) the fixes for PH47867, PH46073, and PH46072.
This fix supersedes (includes) the fixes for PH47867, PH46073, and PH46072.
Prerequisites
None
Installation Instructions
Review the readme.txt for detailed installation instructions.
| URL | SIZE (Bytes) |
|---|---|
| 22.0.0.6 Archive readme file | 3570 |
| 22.0.0.3 Archive readme file | 3570 |
| 22.0.0.7 Archive readme file | 3582 |
| 22.0.0.8 Archive readme file | 2316 |
| IM readme file | 4184 |
Download Package
Important note: WebSphere Application Server and Liberty fix access requires S&S Entitlement in 2021. Use properly registered IDs to download the fixes in this table.
| DOWNLOAD | RELEASE DATE | SIZE (BYTES) | URL |
|---|---|---|---|
| Archive fix files | |||
| 22008-wlp-archive-IFPH48187 | 28 July 2022 | 1287583 | FC |
| 22007-wlp-archive-IFPH48187 | 25 July 2022 | 1287583 | FC |
| 22006-wlp-archive-IFPH48187 | 25 July 2022 | 1287626 | FC |
| 22003-wlp-archive-IFPH48187 | 25 July 2022 | 1259891 | FC |
| IM fix files | |||
| 22.0.0.8-WS-WLP-IFPH48187 | 28 July 2022 | 1320786 | FC |
| 22.0.0.7-WS-WLP-IFPH48187 | 26 July 2022 | 1348353 | FC |
| 22.0.0.6-WS-WLP-IFPH48187 | 26 July 2022 | 1348423 | FC |
| 22.0.0.3-WS-WLP-IFPH48187 | 26 July 2022 | 1345043 | FC |
Note: FC stands for Fix Central. Review the What is Fix Central (FC)? FAQs for more details.
Problems Solved
PH48187
Change History
07/28/2022: Added links to fixes for 22.0.0.8
On
Technical Support
Contact IBM Support at https://www.ibm.com/mysupport/ or 1-800-IBM-SERV (US only).
Document Location
Worldwide
[{"Type":"MASTER","Line of Business":{"code":"LOB45","label":"Automation"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSEQTP","label":"WebSphere Application Server"},"ARM Category":[{"code":"a8m0z0000001j54AAA","label":"WebSphere Application Server traditional-All Platforms-\u003EDownload Documents - L3 Publishing Category"}],"ARM Case Number":"","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF010","label":"HP-UX"},{"code":"PF012","label":"IBM i"},{"code":"PF016","label":"Linux"},{"code":"PF027","label":"Solaris"},{"code":"PF033","label":"Windows"},{"code":"PF035","label":"z\/OS"}],"Version":"22.0.0"}]
Problems (APARS) fixed
Problems (APARS) fixed
Was this topic helpful?
Document Information
Modified date:
28 July 2022
UID
ibm16607071