Support Article
Data-Admin-Security-Keystore not caching
SA-30775
Summary
Data-Admin-Security-Keystore is not caching for mobile application. This is resulting in additional unnecessary calls to the database.
Error Messages
Not applicable
Steps to Reproduce
Connect soap when the connector setup with authProfile.
Root Cause
The rule instance cache doesnt include the data instances of type keystore, thus additional unnecessary calls are made to the database.
Resolution
Apply HFix-30514.
HFix-30514 Installation Instructions
- Take Database backup
- Unzip the attached DDL scripts (Triggers_updated.zip) to a folder, the unzipped content would have DDL scripts specific to the database flavor, for e.g. DB2, MSSQL,POSTGRES and ORACLE. Use the specific flavor. The DB2 folder however contains 2 folders for LUW and ZOS flavors.
- There are 3 scripts in each folder the purpose of each script is to keep the rule instance cache in sync in a multimode environment when a particular rule instance is created, deleted or updated.
- Please ensure to update the schema name in each script , for e.g. CREATE TRIGGER GCS04DBO.trpr_dataadm_upd
ON .pr_data_admin
CALL .PRPC_UPDATESCACHE (NEW.PZINSKEY- Please follow either of the steps(a or b) as per feasibility , both should work
- DROP and recreate the scripts
- Before using the scripts the existing triggers set against PR_DATA_ADMIN table have to be dropped using the conventional drop command.
- For e.g. DROP TRIGGER <SCHEMA_NAME>.<TRIGGER_NAME>
- After dropping the triggers, the triggers specific a particular database in question needs to be run(from the respective folder in the zip). For e.g. for DB2 the 3 triggers needs to be dropped first and 3 triggers need to be created again.
- For e.g for DB2 ZOS , these needs to be created
- db2zos08670_DELETE.sql
- db2zos08680_INSERT.sql
- db2zos08690_UPDATE.sql
- For e.g for DB2 ZOS , these needs to be created
- DROP and recreate the scripts
- If you don’t wish to drop the scripts or don’t have admin privileges to drop the scripts, then alter the existing triggers present in PR_DATA_ADMIN table to add Data-Admin-Security-Keystore to the list of cached instances
- 'Data-Admin-Operator-AccessGroup',
- 'Data-Admin-Calendar',
- 'Data-Admin-OrgDivision',
- 'Data-Admin-StartingFlows',
- 'Data-Admin-System-WorkSource-Application',
- 'Data-Admin-WorkGroup',
- 'Data-Admin-WebServices-Policy',
- 'Data-Admin-ServicePackage',
- 'Data-Admin-AppID',
- 'Data-Admin-Organization',
- 'Data-Admin-OrgUnit',
- 'Data-Admin-System-Security',
- 'Data-Admin-Security-OAuth-Client-AccessToken',
- 'Data-Admin-WorkBasket',
- 'Data-Admin-ServiceType',
- 'Data-Admin-Security-AuthenticationProfile',
- 'Data-Admin-RequestProcessor-Service',
- 'Data-Admin-RequestProcessor-Connect',
- 'Data-Admin-Security-WSSecurityProfile',
- 'Data-Admin-System-SecurityPolicy',
- 'Data-Admin-System-Targets',
- 'Data-Admin-System-WorkSource',
- 'Data-Admin-System-Settings',
- 'Data-Admin-System',
- 'Data-Admin-Security-Keystore' – This needs to be added.
- After adding 'Data-Admin-Security-Keystore' to the list , execute the trigger.
- After the database operations are performed, The DL item needs to be installed and the server needs to be restarted.
- Please make sure you save the already existing keystore instances used in your application either by saving them manually or by running the Revalidate and Save utility and choosing Data-Admin-Security-Keystore as the Type.
Published December 1, 2016 - Updated October 8, 2020
Have a question? Get answers now.
Visit the Collaboration Center to ask questions, engage in discussions, share ideas, and help others.