000011995 - What does the PASSIVE_ALLOW authorization result mean?

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 22, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000011995
Applies ToClearTrust Runtime Web Services API 5.5.3
IssueWhat does the PASSIVE_ALLOW authorization result mean?

ClearTrust runtime WebServices returns the following result code:

<name xsi:type="xsd:string">AUTHORIZATION_RESULT</name>
<value xsi:type="xsd:string">PASSIVE_ALLOW</value>

CausePassive allow means that access to the URL is implicitly allowed because there is no entitlement that matches the pattern.
ResolutionThis is the expected result when the URL is not protected.  
Workaround

ClearTrust runtime WebServices sends the authorization request:

<m:webServerName xsi:type="xsd:string">webserver</m:webServerName>
<m:uri xsi:type="xsd:string">/protected/</m:uri>

Legacy Article IDa40772

Attachments

    Outcomes