Skip to Main Content
Cloud Platform


This is an IBM Automation portal for Cloud Platform products. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas
  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.


ADD A NEW IDEA

WebSphere Liberty

Showing 80

Include strong ciphers in liberty

We are using EKMF Web, and it uses WebSphere Liberty. EKMFWEB uses port 9443. Recently we received report that the port is vulnerable. Upon researching with IBM, it was found that weak ciphers have been included in liberty even when configured to ...
11 months ago in WebSphere Liberty 0 Future consideration

Allow useAuthenticationDataForUnprotectedResource being set at application level

This idea comes from case . z/OSMF has multiple http endpoints. One endpoint needs to set useAuthenticationDataForUnprotectedResource to False while while other endpoints need to set useAuthenticationDataForUnprotectedResource to True. Liberty doe...
about 1 year ago in WebSphere Liberty 2 Future consideration

DataPower HSM should support RSA-OAEP

The current HSM version in IDGx2 and IDGx3 does not support RSA OAEP padding which is a major issue as the only supported alternative is RSA1_5 (PKCS1-v1_5) which is considered vulnerable. The decryption of an RSA-OAEP or RSA-OAEP-256 encrypted JW...
about 1 year ago in WebSphere Liberty 0 Future consideration

Support FIPS 140-2 for Websphere Liberty (Java 17 or later) on Windows OS

Support FIPS(The Federal Information Processing Standard) 140-2 for Websphere Liberty with IBM Semeru Runtime Java 17 or later on Windows OS. Liberty has already supported it on RHEL platform, but not on Windows. If not, Liberty cannot win all pla...
over 1 year ago in WebSphere Liberty 0 Future consideration

Allow OutboundIp / Outbound Interface for IHS liberty plugin

General Description It is common for reverse proxies to use a specific outbound interface for communications to upstream, which is not the default route. IHS with the websphere plugin is the only reverse proxy which does not support this very comm...
over 1 year ago in WebSphere Liberty 0 Future consideration

Add support for ignoring unknown elements in SOAP response

We run an application on Liberty that performs SOAP-based API calls to a third party API. The API changes frequently and adds new elements to the response, which breaks our application until we update our client code as well. When previously deplo...
over 1 year ago in WebSphere Liberty 0 Future consideration

Support token authentication (IDT) when accessing a db when using a connection pool

PCI data security is requiring servers to never expose a password when accessing a db. The industry is moving towards using JWTs (for example, a RACF IDT on z/OS) to meet this requirement. JWT eliminate the need to manage a db password in Liberty ...
over 1 year ago in WebSphere Liberty 0 Future consideration

Mapping of a role in a JWT token to a technical user ID in SAF/RACF

As of today only WebSphere Liberty on z/OS and z/OS Connect EE (which is also based on WebSphere Liberty on z/OS) can only map the distributed user ID in a JWT token to a mainframe user ID in SAF/RACF. This is a problem when there is no equivalent...
over 1 year ago in WebSphere Liberty 0 Future consideration

Userid for WLM Classification

Customer states a need to capture by Userid, instead of API. Currently The existing attributes are for host, method, port, resource and transactionClass only. No userid capability.
over 1 year ago in WebSphere Liberty 1 Future consideration

z/OS Connect doesn't support SNI because it uses the Liberty jaxrsClient-2.0 feature and that doesn't provide SNI support in the API requestor scenario because the Java httpURLConnection method is not being used. So please make that available.

It's very useful because when SNI support comes available in z/OS Connect API requestor it can be used for for going to the same API endpoint but specifying 3 different API endpoints in z/OS Connect coming from 3 different stages (Dev, TEST and Ac...
almost 2 years ago in WebSphere Liberty 0 Future consideration