]
Stefan Guilhen closed SECURITY-665.
-----------------------------------
Fix Version/s: PIcketBox_4_0_15.Final
Resolution: Done
The passwordIsA1Hash option has been added to the set of valid options in
UsernamePasswordLoginModule.
Incorrect warning about invalid option passwordIsA1Hash in login
modules
------------------------------------------------------------------------
Key: SECURITY-665
URL:
https://issues.jboss.org/browse/SECURITY-665
Project: PicketBox
Issue Type: Bug
Security Level: Public(Everyone can see)
Affects Versions: PicketBox_v4_0_9.Final
Reporter: Martin Gencur
Assignee: Stefan Guilhen
Fix For: PIcketBox_4_0_15.Final
As I described in in my last post in
https://community.jboss.org/message/744521#744521, I
had a problem with DIGEST authentication and passwordIsA1Hash option configured in JBossAS
7.
IMO one of the following classes should enlist passwordIsA1Hash option among their valid
options: AbstractServerLoginModule, UsernamePasswordLoginModule, UsersRolesLoginModule.
Now it's missing and login modules scream that the option is invalid (in my case
UsersRolesLoginModule).
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: