IBM Support

PK57939: ACCESSDENIEDEXCEPTIONS ARE RECORDED IN SYSTEMOUT FOR UNAUTHORIZED USERS.

 

APAR status

  • Closed as program error.

Error description

  • AccessDeniedExceptions are logged in the systemout when
    WCM components are accessed by unauthorized users. The messages
    are unnecessarily filling up the logs and should be logged only
    with explicit logging enabled. Here is an example of such an
    exception :
    
    [12/4/07 8:44:40:574 EST] 00000062 AbstractContr E   The
    requested operation violates one or more access constraints.
    
    com.ibm.icm.jcr.access.AccessDeniedException: The requested
    operation violates one or more access constraints.
     at
    com.ibm.icm.jcr.NodeImpl.checkPermissions(NodeImpl.java(Compiled
    Code))
     at
    com.ibm.icm.jcr.WorkspaceImpl.getNodeByUuid(WorkspaceImpl.java(C
    ompiled Code))
     at
    com.ibm.workplace.wcm.data.jcr.JCRDataUtils.getNodeByUUID(JCRDat
    aUtils.java(Compiled Code))
     at
    com.ibm.workplace.wcm.domain.transformers.controllable.AbstractC
    ontrollableTransformer.implodeControl(AbstractControllableTransf
    ormer.java(Compiled Code))
     at
    com.aptrix.pluto.control.Controllable.getControl(Controllable.ja
    va(Compiled Code))
     at
    com.aptrix.pluto.control.Controllable.getControl(Controllable.ja
    va(Compiled Code))
     at
    com.aptrix.pluto.security.SecurityUtils.isAccessible(SecurityUti
    ls.java(Compiled Code))
     at
    com.ibm.workplace.wcm.services.content.ContentServiceImpl.getImp
    l(ContentServiceImpl.java(Compiled Code))
     at
    com.ibm.workplace.wcm.services.content.ContentServiceImpl.getLaz
    y(ContentServiceImpl.java(Inlined Compiled Code))
     at
    com.aptrix.pluto.cmpnt.CmpntReference.retrieveFromManager(CmpntR
    eference.java(Compiled Code))
     at
    com.aptrix.pluto.cmpnt.CmpntReference.getTargetCmpnt(CmpntRefere
    nce.java(Compiled Code))
     at
    com.aptrix.pluto.cmpnt.BaseReferenceCmpnt.retrieveCmpnt(BaseRefe
    renceCmpnt.java(Compiled Code))
    

Local fix

  • No workaround is available.
    

Problem summary

  • ACCESSDENIEDEXCEPTIONS ARE RECORDED IN SYSTEMOUT FOR
    UNAUTHORIZED USERS.
    

Problem conclusion

  • AccessDeniedExceptions are logged in the systemout when
    WCM components are accessed by unauthorized users. The messages
    are unnecessarily filling up the logs and should be logged only
    with explicit logging enabled. Here is an example of such an
    exception :
    
    [12/4/07 8:44:40:574 EST] 00000062 AbstractContr E   The
    requested operation violates one or more access constraints.
    
    com.ibm.icm.jcr.access.AccessDeniedException: The requested
    operation violates one or more access constraints.
     at
    com.ibm.icm.jcr.NodeImpl.checkPermissions(NodeImpl.java(Compiled
    Code))
     at
    com.ibm.icm.jcr.WorkspaceImpl.getNodeByUuid(WorkspaceImpl.java(C
    ompiled Code))
     at
    com.ibm.workplace.wcm.data.jcr.JCRDataUtils.getNodeByUUID(JCRDat
    aUtils.java(Compiled Code))
     at
    com.ibm.workplace.wcm.domain.transformers.controllable.AbstractC
    ontrollableTransformer.implodeControl(AbstractControllableTransf
    ormer.java(Compiled Code))
     at
    com.aptrix.pluto.control.Controllable.getControl(Controllable.ja
    va(Compiled Code))
     at
    com.aptrix.pluto.control.Controllable.getControl(Controllable.ja
    va(Compiled Code))
     at
    com.aptrix.pluto.security.SecurityUtils.isAccessible(SecurityUti
    ls.java(Compiled Code))
     at
    com.ibm.workplace.wcm.services.content.ContentServiceImpl.getImp
    l(ContentServiceImpl.java(Compiled Code))
     at
    com.ibm.workplace.wcm.services.content.ContentServiceImpl.getLaz
    y(ContentServiceImpl.java(Inlined Compiled Code))
     at
    com.aptrix.pluto.cmpnt.CmpntReference.retrieveFromManager(CmpntR
    eference.java(Compiled Code))
     at
    com.aptrix.pluto.cmpnt.CmpntReference.getTargetCmpnt(CmpntRefere
    nce.java(Compiled Code))
     at
    com.aptrix.pluto.cmpnt.BaseReferenceCmpnt.retrieveCmpnt(BaseRefe
    renceCmpnt.java(Compiled Code))
    
    The exceptions are being logged as severe/warning messages by
    default and they need to be logged
    only with explicit WCM logging enabled.
    
    An interim fix for release 6.0.1.2 is available from Fix Central
    at:
    
    http://www.ibm.com/eserver/support/fixes/fixcentral/swgquickorde
    r?brandid=2&productid=Workplace%20Web%20Content%20Management&fix
    es=6.0.1.2-WCM-PK57939
    
    You will need to cut/paste the entire URL into a browser to
    resolve the address.
    

Temporary fix

Comments

APAR Information

  • APAR number

    PK57939

  • Reported component name

    WRKPLC WEB CON

  • Reported component ID

    5724I2900

  • Reported release

    60D

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt

  • Submitted date

    2007-12-10

  • Closed date

    2008-04-01

  • Last modified date

    2008-04-07

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

Fix information

  • Fixed component name

    WRKPLC WEB CON

  • Fixed component ID

    5724I2900

Applicable component levels

  • R60A PSY

       UP

[{"Business Unit":{"code":null,"label":null},"Product":{"code":"SUPPORT","label":"IBM Worldwide Support"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"6.0.0.4","Edition":"","Line of Business":{"code":null,"label":null}}]

Document Information

Modified date:
10 September 2020