[MID-7699] Password reset warning: Null principal - Evolveum Jira

XML

Word

Printable

Details

Type: Bug
Status: Reopened
Priority: Minor
Resolution: Unresolved
Affects Version/s: 4.4.1, 4.4.2
Fix Version/s: 4.8
Component/s: None
Labels:
- #mid102

Subscription:
Internal

Description

When testing password reset and going to the nonce page (from email notification), the following warning is logged in midpoint.log

2022-03-01 17:43:49,938 [MODEL] [http-nio-8080-exec-5] WARN (com.evolveum.midpoint.security.enforcer.impl.SecurityEnforcerImpl): Null principal
2022-03-01 17:43:49,941 [MODEL] [http-nio-8080-exec-5] WARN (com.evolveum.midpoint.security.enforcer.impl.SecurityEnforcerImpl): Null principal

As noted by honchar, this happens if the link from email is opened in a different browser than the one with Forgot password button clicked. I commonly use a incognito/private window for this.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List
- Download All

example-password-policy.xml
3 kB
04/Apr/22 12:42 PM
example-nonce-policy.xml
2 kB
04/Apr/22 12:42 PM
example-security-policy-hashing-experimental.xml
6 kB
04/Apr/22 12:43 PM

Activity

People

Assignee:: Kate Honchar

Reporter:: Ivan Noris

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 01/Mar/22 5:45 PM

Updated:: 01/May/23 2:09 PM