IBM Support

PM89228: Rational Developer for System z (RDz) - permissions of the first logon user is retained for any subsequent user

Subscribe

You can track all active APARs for this component.

APAR status

  • Closed as program error.

Error description

  • Headline/Abstract:
    ***************************************************************
    Rational Developer for System z (RDz): In a same session, first
    userId permissions are kept for subsequent userIds.
    
    APAR Error Description:
    ***************************************************************
    Rational Developer for System z - RDz - V8.5.1.1
    The permissions of the first user ID connecting to a system are
    cached. If in the same RDz session, the user disconnects the
    first userId and re-connects with a second userId, this
    second userId will be given the permissions of the first
    userId.
    
    Re-creation steps:
    
    Connected to your system, issue the following RACF commands:
    
       RDEFINE FACILITY FEK.USR.OFF.REMOTECOPY.MVS.?sysname?
        UACC(NONE)
       PERMIT FEK.USR.OFF.REMOTECOPY.MVS.?sysname? -
    
        CLASS(FACILITY) ACCESS(READ) ID(?userid_A?)
    
       SETROPTS RACLIST(FACILITY) REFRESH
    
    
    that is:
    User ?userid_A? cannot use drag, copy, save-as functions as
    they are disabled
    Any other users, like user ?userid_B?, can use these functions
    
    . launch RDz and use workspace A
    . connect to ?sysname? with user ?userid_A?,
    . expand any filter, right click and we'll see the 'Copy' item
    menu grayed out. This is expected.
    . disconnect
    . connect to the same system with user ?userid_B?
    . expand any filter, right click and we'll see the 'Copy' item
    menu still grayed out and it shouldn't.
    ***************************************************************
    Local fix:
    To connect with another user ID, exit and restart RDz.
    

Local fix

Problem summary

  • ****************************************************************
    * USERS AFFECTED: 01.All RDz users                             *
    ****************************************************************
    * PROBLEM DESCRIPTION: 01.UserId permissions are not checked   *
    *                         normally against RACF resource.      *
    ****************************************************************
    * RECOMMENDATION:                                              *
    ****************************************************************
    01.When invoking RACF API, the userid must be padded with
       blanks, but the padding logic has a bug.
    

Problem conclusion

  • 01.Now, padding userid with blanks works normally and the RACF
       API can check the userid permissions correctly.
    

Temporary fix

Comments

APAR Information

  • APAR number

    PM89228

  • Reported component name

    RATL DEV FOR SY

  • Reported component ID

    5724T0700

  • Reported release

    850

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt

  • Submitted date

    2013-05-17

  • Closed date

    2013-10-16

  • Last modified date

    2013-10-31

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

Modules/Macros

  • FEKFOMVS
    

Fix information

  • Fixed component name

    RD/Z HOST

  • Fixed component ID

    5724T0723

Applicable component levels

  • R850 PSY UK98515

       UP13/10/31 I 1000

Fix is available

  • Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.



Document information

More support for: Rational Developer for System z

Software version: 8.5

Reference #: PM89228

Modified date: 31 October 2013