[jboss-jira] [JBoss JIRA] (SECURITY-796) LdapExtended login module does not handle a user that has a slash character in the uid
RH Bugzilla Integration (JIRA)
issues at jboss.org
Tue Mar 4 05:31:33 EST 2014
[ https://issues.jboss.org/browse/SECURITY-796?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12949671#comment-12949671 ]
RH Bugzilla Integration commented on SECURITY-796:
--------------------------------------------------
Ondrej Lukas <olukas at redhat.com> changed the Status of [bug 1067599|https://bugzilla.redhat.com/show_bug.cgi?id=1067599] from ON_QA to VERIFIED
> LdapExtended login module does not handle a user that has a slash character in the uid
> --------------------------------------------------------------------------------------
>
> Key: SECURITY-796
> URL: https://issues.jboss.org/browse/SECURITY-796
> Project: PicketBox
> Issue Type: Bug
> Security Level: Public(Everyone can see)
> Components: PicketBox
> Affects Versions: PicketBox_4_0_20.Final
> Reporter: Derek Horton
> Assignee: Stefan Guilhen
> Attachments: SECURITY-796.patch
>
>
> LdapExtended login module does not handle a user that has a slash character in the uid.
> For example, JBoss will fail to authenticate the following user correctly:
> dn: uid=weird/user,ou=Users,dc=my-domain,dc=com
> uid: weird/user
> cn: Weird User
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list