NetIQ Access Mananer IDP server annot disable debug X-Jersey-Tracing headers

  • 7022006
  • 05-Oct-2017
  • 05-Oct-2017

Environment

  • Access Manager 4.3
  • Access Manager 4.3.1
  • Access Manager 4.3.2
  • Access Manager 4.4

Situation

  • Calling: "https://idpa.kgast.nam.com:8443/nidp/mobileaccess/endpoint/configuration?refresh=true&output=json" results in a HTTP / JSON response which which includes jersey debug header (should be off per default)

    HTTP/1.1 200 OK
    Server: Apache-Coyote/1.1
    X-FRAME-OPTIONS: SAMEORIGIN
    Strict-Transport-Security: max-age=31536000
    X-Content-Type-Options: nosniff
    X-XSS-Protection: 1; mode=block
    X-Jersey-Tracing-000: START       [ ---- /  ---- ms |  ---- %] baseUri=[https://idpa.kgast.nam.com:8443/nidp/mobileaccess/] requestUri=[https://idpa.kgast.nam.com:8443/nidp/mobileaccess/endpoint/configuration?refresh=true&output=json] method=[GET] authScheme=[n/a] accept=[*/*] accept-encoding=[gzip, deflate] accept-charset=n/a accept-language=[en-US] content-type=n/a content-length=n/a
    X-Jersey-Tracing-001: START       [ ---- /  0.08 ms |  ---- %] Other request headers: user-agent=[Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)] host=[idpa.kgast.nam.com:8443] dnt=[1] connection=[Keep-Alive]
    X-Jersey-Tracing-002: PRE-MATCH   [ 0.00 /  0.30 ms |  0.00 %] PreMatchRequest summary: 0 filters
    X-Jersey-Tracing-003: MATCH       [ ---- /  0.34 ms |  ---- %] Matching path [/endpoint/configuration]
    X-Jersey-Tracing-004: MATCH       [ ---- /  0.38 ms |  ---- %] Pattern [/endpoint(/.*)?] IS selected
    X-Jersey-Tracing-005: MATCH       [ ---- /  0.39 ms |  ---- %] Pattern [/app(/.*)?] is skipped
    X-Jersey-Tracing-006: MATCH       [ ---- /  0.44 ms |  ---- %] Matching path [/configuration]
    X-Jersey-Tracing-007: MATCH       [ ---- /  0.52 ms |  ---- %] Pattern [/configuration(/)?] IS selected
    X-Jersey-Tracing-008: MATCH       [ 0.56 /  0.88 ms |  0.49 %] RequestMatching summary
    X-Jersey-Tracing-009: REQ-FILTER  [ 0.00 /  0.91 ms |  0.00 %] Request summary: 0 filters
    X-Jersey-Tracing-010: INVOKE      [111.40 / 112.50 ms | 98.52 %] Resource [net.microfocus.mobileaccess.service.v1.resources.OAuth2EndPointMetadata @d46c288] method=[public javax.ws.rs.core.Response net.microfocus.mobileaccess.service.v1.resources.OAuth2EndPointMetadata.getClientMetadata(javax.servlet.http.HttpServletRequest,java.lang.String)]
    X-Jersey-Tracing-011: INVOKE      [ ---- / 112.56 ms |  ---- %] Response: [org.glassfish.jersey.message.internal.OutboundJaxrsResponse @5f4d74a9 <200/SUCCESSFUL|OK|java.lang.String @1dab8c2f>]
    X-Jersey-Tracing-012: RESP-FILTER [ 0.00 / 112.63 ms |  0.00 %] Response summary: 0 filters
    X-Jersey-Tracing-013: WI          [ 0.00 / 112.73 ms |  0.00 %] [org.glassfish.jersey.server.internal.MappableExceptionWrapperInterceptor @43dd8586 #10] BEFORE context.proceed()
    X-Jersey-Tracing-014: WI          [ 0.01 / 112.76 ms |  0.01 %] [org.glassfish.jersey.server.internal.JsonWithPaddingInterceptor @31907884 #4100] BEFORE context.proceed()
    X-Jersey-Tracing-015: MBW         [ ---- / 112.80 ms |  ---- %] Find MBW for type=[java.lang.String] genericType=[java.lang.String] mediaType=[[javax.ws.rs.core.MediaType @23c077f7]] annotations=[@javax.ws.rs.GET(), @javax.ws.rs.Path(value=/configuration), @javax.ws.rs.Produces(value=[application/json])]
    X-Jersey-Tracing-016: MBW         [ ---- / 112.90 ms |  ---- %] [org.glassfish.jersey.message.internal.StringMessageProvider @13cb7694] IS writeable
    X-Jersey-Tracing-017: MBW         [ ---- / 112.92 ms |  ---- %] [com.fasterxml.jackson.jaxrs.json.JacksonJaxbJsonProvider @8dc2342] is skipped
    X-Jersey-Tracing-018: MBW         [ ---- / 112.93 ms |  ---- %] [org.glassfish.jersey.message.internal.XmlCollectionJaxbProvider$General @71271d58] is skipped
    X-Jersey-Tracing-019: MBW         [ ---- / 112.94 ms |  ---- %] [org.glassfish.jersey.message.internal.XmlRootElementJaxbProvider$General @1b2c1df7] is skipped
    X-Jersey-Tracing-020: MBW         [ 0.05 / 113.01 ms |  0.05 %] WriteTo by [org.glassfish.jersey.message.internal.StringMessageProvider @13cb7694]
    X-Jersey-Tracing-021: WI          [ 0.00 / 113.03 ms |  0.00 %] [org.glassfish.jersey.server.internal.JsonWithPaddingInterceptor @31907884 #4100] AFTER context.proceed()
    X-Jersey-Tracing-022: WI          [ 0.00 / 113.05 ms |  0.00 %] [org.glassfish.jersey.server.internal.MappableExceptionWrapperInterceptor @43dd8586 #10] AFTER context.proceed()
    X-Jersey-Tracing-023: WI          [ 0.34 / 113.06 ms |  0.30 %] WriteTo summary: 2 interceptors
    X-Jersey-Tracing-024: FINISHED    [ ---- / 113.07 ms |  ---- %] Response status: 200/SUCCESSFUL|OK
    Content-Type: application/json
    Content-Length: 1862
    Date: Fri, 08 Sep 2017 09:30:42 GMT

    {"IDP":{"Application":[{"displayName":"Mobile Client
    ....
    ...
    ..

Resolution

  • This issue has been addressed to engineering