Uploaded image for project: 'MidPoint'
  1. MidPoint
  2. MID-4028

Password policy is not used correctly, probably some builtin default is used for generated password

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Minor
    • Resolution: Fixed
    • Affects Version/s: 3.6 (Comenius)
    • Fix Version/s: 3.6.1, 3.7
    • Component/s: None
    • Labels:

      Description

      1. password policy is embedded (ref) in security policy, which is set as default in System Configuration
      2. the password policy specified that there must be numeric character in the password
      3.

      <generate/>

      is used with weak mapping in source resource
      4. SOMETIMES(!!!) the password generated by the policy does not contain the numeric character and is considered invalid by the same policy which generated it...

      Obviously there are some defaults or something...

      As a workaround, we try to set

      <generate>

      with reference to the password policy... I will update this issue description later.

        Attachments

          Activity

            People

            Assignee:
            vix Ivan Noris
            Reporter:
            vix Ivan Noris
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: