IBM Support

PH13970: After updating to 19.0.0.4, SESN0008E errors started occurring.

Fixes are available

19.0.0.7: WebSphere Application Server Liberty 19.0.0.7
19.0.0.8: WebSphere Application Server Liberty 19.0.0.8
19.0.0.9: WebSphere Application Server Liberty 19.0.0.9
19.0.0.10: WebSphere Application Server Liberty 19.0.0.10
19.0.0.11: WebSphere Application Server Liberty 19.0.0.11
19.0.0.12: WebSphere Application Server Liberty 19.0.0.12
20.0.0.1: WebSphere Application Server Liberty 20.0.0.1
20.0.0.2: WebSphere Application Server Liberty 20.0.0.2
20.0.0.3: WebSphere Application Server Liberty 20.0.0.3
20.0.0.4: WebSphere Application Server Liberty 20.0.0.4
20.0.0.5: WebSphere Application Server Liberty 20.0.0.5

Subscribe

You can track all active APARs for this component.

 

APAR status

  • Closed as program error.

Error description

  • The changes introduced by PI91146 caused unexpected
sideffects w
made for an unprotected URI, and there is one or more
trustAssoc
invokeForUnprotectedURI="true" configured.

Local fix

  • N/A

Problem summary

  • ****************************************************************
* USERS AFFECTED:  All users of IBM WebSphere Application      *
*                  Server Liberty  who are enabling TAI and    *
*                  invokeForUnprotectedURI is set as true.     *
****************************************************************
* PROBLEM DESCRIPTION: After updating to 19.0.0.4, SESN0008E   *
*                      errors started occurring when a TAI is  *
*                      enabled with                            *
*                      invokeForUnprotectedURI=true.           *
****************************************************************
* RECOMMENDATION:                                              *
****************************************************************
Due to a code change in fixpack 19.0.0.4, custom TAIs are not
driven to authenticate unprotected resources even when the
property invokeForUnprotectedURI=true is set.  As a result, if
those resources try to access the session information, the
attempt will fail with an SESN0008E error.

Problem conclusion

Temporary fix

  • In order to mitigate the issue, set continueAfterUnprotectedURI
as true in trustAssociation configuration element in
server.xml.
The complete solution which resolves original APAR PI91146
intended to fix will be provided by APAR PH15089.

Comments

  • 



APAR Information




    

  • APAR number
    PH13970
    • 

  • Reported component name
    LIBERTY PROFILE
    • 

  • Reported component ID
    5724J0814
    • 

  • Reported release
    CD0
    • 

  • Status
    CLOSED  PER
    • 

  • PE
    NoPE
    • 

  • HIPER
    NoHIPER
    • 

  • Special Attention
    NoSpecatt / Xsystem
    • 

  • Submitted date
    2019-06-28
    • 

  • Closed date
    2019-08-14
    • 

  • Last modified date
    2019-08-14
    • 





    

  • APAR is sysrouted FROM one or more of the following:
    

    • 

  • APAR is sysrouted TO one or more of the following:
    

    • 



Fix information


    

  • Fixed component name
    LIBERTY PROFILE
    • 

  • Fixed component ID
    5724J0814
    • 



Applicable component levels


    

  • RCD0  PSY
       UP
    • 








      
              
                            

              

              [{"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Product":{"code":"SSEQTP","label":"WebSphere Application Server"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"CD0","Line of Business":{"code":"LOB45","label":"Automation"}}]
              

                          

          
 
        

      

    

      

        

          

            
Document Information


            

            


                        

            Modified date:
            

            17 October 2021
            

            
                      

        


        

        


      

    

  



    

  

  
    
            

          
Page Feedback