OAuth tokens expire when using the Jazz Team Server HTTP connections for the Rational Requirements Composer server

Technote (troubleshooting)


Problem(Abstract)

When a non-secure (HTTP) connection is used between the IBM® Rational® Requirements Composer server and Jazz® Team Server you might see "timestamp_refused" errors in the Jazz Team Server server log. These entries might be included when the server is under high load.
The entries also might be recorded when the Jazz Team Server and Rational Requirements Composer servers are on different computers and the clocks on the two computers are not synchronized within a second. Using HTTP creates the potential for security breaches. This problem does not occur when using a secure connection (HTTPS) between Rational Requirements Composer and Jazz Team Server.

Symptom

Rational Requirements Composer users are unable to use the client when the OAuth tokens expire unexpectedly. Administrators are unable to complete server setup. OAuth error messages and 400 Bad Request messages are displayed at the top of the Rational Requirements Composer web client or setup page.


Resolving the problem

To address the OAuth problem during setup, synchronize the clocks on the Jazz Team Server and Rational Requirements Composer server to be within one second.

To prevent potential problems for Rational Requirements Composer users who work under a high server load, increase the OAuth nonce tracking period on the Jazz Team Server admin page. To increase the OAuth nonce tracking period:

  1. In your web browser open http://server:9080/jts/admin#action=com.ibm.team.repository.admin.configureAdvanced
  2. Find the OAuth nonce tracking period (in seconds) property.
  3. The default value is 5 seconds. Increase this value to 15 seconds.
  4. Click Preview in the top right corner of the com.ibm.team.repository.service.internal.oauth.OAuthServiceProvider section.
  5. Click Save in the top, right corner of the page.

Related information

HTTP/1.1 400 Bad Request for jfs:currentUser and other
Relax validation of nonce/timestamp values when the req

Rate this page:

(0 users)Average rating

Add comments

Document information


More support for:

Rational Requirements Composer
General Information

Software version:

3.0.1, 3.0.1.1, 3.0.1.2, 3.0.1.3, 3.0.1.4, 3.0.1.5, 3.0.1.6

Operating system(s):

Linux, Windows

Reference #:

1502335

Modified date:

2011-06-13

Translate my page

Machine Translation

Content navigation