Uploaded image for project: 'MidPoint'
  1. MidPoint
  2. MID-4028

Password policy is not used correctly, probably some builtin default is used for generated password

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Minor
    • Resolution: Fixed
    • Affects Version/s: 3.6 (Comenius)
    • Fix Version/s: 3.6.1, 3.7
    • Component/s: None
    • Labels:

      Description

      1. password policy is embedded (ref) in security policy, which is set as default in System Configuration
      2. the password policy specified that there must be numeric character in the password
      3.

      <generate/>

      is used with weak mapping in source resource
      4. SOMETIMES(!!!) the password generated by the policy does not contain the numeric character and is considered invalid by the same policy which generated it...

      Obviously there are some defaults or something...

      As a workaround, we try to set

      <generate>

      with reference to the password policy... I will update this issue description later.

        Attachments

          Activity

            People

            • Assignee:
              vix Ivan Noris
              Reporter:
              vix Ivan Noris
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: