============================================================================= Run Date: MAR 20, 2023 Designation: XU*8*781 Package : XU - KERNEL Priority: Mandatory Version : 8 SEQ #623 Status: Released Compliance Date: APR 20, 2023 ============================================================================= Associated patches: (v)XU*8*748 install with patch `XU*8*781' Subject: KAAJEE SSPI - Application User Role Removal update Category: - Informational Description: ============ Kernel Authentication & Authorization for Java 2 Enterprise Edition Security Service Provider Interface (KAAJEE SSPI) patch, addresses an issue with user role removal. This patch includes changes to a distributable WLST Python script file, in the form of an updated SQL query behind the RemoveGroupMemberships API. ************************************************************************** This is an informational only patch that will be released as a Kernel Authentication & Authorization for Java 2 Enterprise Edition Security Service Provider Interface (KAAJEE SSPI) component update. Installation will be performed by Martinsburg on a centralized server. There is no action for VHA sites required by this patch. There is no server side (VistA PackMan or KIDS) part to the patch. There are no client side (Windows executable) programs for VHA production workstations. ************************************************************************** Defect Tracking System Ticket(s) & Overview: 1. INC24532221 - Application User Role Removal Problem: -------- Upon creation of an application user, as part of the removal of existing user operation, a RemoveGroupMemberships API is being called by the WebLogic server, passing the NULL parameter value for a group value. The query behind the method was not matching the clause, which resulted in the user role(s) not being removed from the persistent storage. It affected the application side by granting the role(s) from a previous session. Resolution: ----------- The script has been updated with the conditional operator which allowed for the NULL value being passed. Test Sites: ----------- Michael E. DeBakey VA Medical Center,Houston, TX Oklahoma City VA Medical Center, OK Software and Documentation Retrieval Instructions: -------------------------------------------------- N/A Other Software Files: This release also includes other software files. They can be obtained at location: /srv/vista/patches/SOFTWARE Other software files can also be obtained by accessing the URL: https://download.vista.domain.ext/index.html/SOFTWARE File Title File Name Format --------------------------------------------------------------------- KAAJEE SSPI*8*781 bundle XU_8_781.ZIP Binary Documentation describing the new functionality is included in this release. Documentation can be found on the VA Software Documentation Library at: https://www.domain.ext/vdl/. Documentation can also be obtained at https://download.vista.domain.ext/index.html/SOFTWARE. Documentation Title File Name --------------------------------------------------------------------- Installation Guide KAAJEE_SSPI_XU_8_781_IG.PDF (WebLogic 12.2) XU*8.0*781 Release Notes KAAJEE_SSPI_XU_8_781_RN.PDF XU*8.0*781 Backout Guide KAAJEE_SSPI_XU_8_781_BCKOUT.PDF Installation Instructions: -------------------------- ****************************************************************** ** PLEASE NOTE: THERE IS NO INSTALLATION FOR THIS PATCH. ** ****************************************************************** This informational patch, XU*8.0*781, is for the KAAJEE SSPI component only. Installation is performed by the administrator of the WebLogic server. For instructions on the installation on the WebLogic Server please refer to the KAAJEE SSPI Installation Guide document. Post-Installation Instructions: ----------------------- N/A Back-Out/Roll Back Plan: ------------------------ Please refer to the Installation Guide Document (KAAJEE_SSPI_XU_8_781_IG.PDF), Appendix A - Rollback Instructions. Routine Information: ==================== No routines included. ============================================================================= User Information: Entered By : Date Entered : OCT 28, 2022 Completed By: Date Completed: MAR 16, 2023 Released By : Date Released : MAR 20, 2023 ============================================================================= Packman Mail Message: ===================== No routines included