"x-com-ibm-team-scenario" cookie details needed
x-com-ibm-team-scenario: id=cec7d0ef-72d0-4869-a0b2-43a356194a97;name=Load Plan
"id" is the scenario identifier and name is the scenario type.
Can anyone please help elaborate what is this Id and Scenario Type?
Accepted answer
Comments
I hope you get your answer soon. Thanks.
Hello Ralph, If I try to open the work item it is showing as you do not have the permission to access the work item. Expecting some error, I opened another defect giving the same details (link: https://jazz.net/jazz/web/projects/Rational%20Team%20Concert#action=com.ibm.team.workitem.viewWorkItem&id=394442 ). Now I received a notification saying this has been set to resolved state, saying this is a duplicate of my work item (https://jazz.net/jazz/web/projects/Rational%20Team%20Concert?errno=2#action=com.ibm.team.workitem.viewWorkItem&id=394320). I do not have access to either of the work items created. NOt sure on how to proceed here. Please help.
Hello Ralph, If I try to open the work item it is showing as you do not have the permission to access the work item. Expecting some error, I opened another defect giving the same details (link: https://jazz.net/jazz/web/projects/Rational%20Team%20Concert#action=com.ibm.team.workitem.viewWorkItem&id=394442 ). Now I received a notification saying this has been set to resolved state, saying this is a duplicate of my work item (https://jazz.net/jazz/web/projects/Rational%20Team%20Concert?errno=2#action=com.ibm.team.workitem.viewWorkItem&id=394320). I do not have access to either of the work items created. NOt sure on how to proceed here. Please help.
Preetam,
your company has created another work item already. This one is closed as duplicate. I will try to get you access to the other one. Please don't create any more work items for now.
The work item was moved to a private area. I still have access. I will try to figure out how to let you know progress. But you can be sure that development is working on this for your company already.
Thank you so much Ralph for your support as always!! :)
Current state is, that in 6.0.3 a different approach will be used - not a cookie. It is unsure if this will be fixed as the cookie just carries some information and is not security related.
One other answer
Initial user scenario capabilities
User scenario support capabilities are being introduced in this release. User actions will be identified by a scenario type and unique identifier that is surfaced in facilities through the platform. As a user action may consist of multiple threads of execution on a server and even across server nodes, these scenarios allow the gathering of information across the entire topology of a CLM deployment as it is related to user activities.
So these ID's support these scenarios. I can only guess from discussions, but there is a need to understand usage and performance pattern and these ID's can provide that glue to allow this, that otherwise does not exist.
I don't think this is meant to be consumed by users of the tools. This is for internal usage such as monitoring, statistics and improvement.
Comments
Hello Ralph,
Thank you for your response.
The IBM Rational AppScan has detected this cookie "x-com-ibm-team-scenario" as VULNERABLE. The security team is asking for the details about the id, whether it is sharing any critical data with the outside world. Can you help in this context. Appreciate your detailed response.
Thanks.
No, you will have to talk to the responsible architect/developer. E.g. Create a PMR or a work item.