[jboss-jira] [JBoss JIRA] (SECURITY-796) LdapExtended login module does not handle a user that has a slash character in the uid
RH Bugzilla Integration (JIRA)
issues at jboss.org
Wed May 14 11:51:58 EDT 2014
[ https://issues.jboss.org/browse/SECURITY-796?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12967861#comment-12967861 ]
RH Bugzilla Integration commented on SECURITY-796:
--------------------------------------------------
Hynek Mlnarik <hmlnarik at redhat.com> changed the Status of [bug 1065486|https://bugzilla.redhat.com/show_bug.cgi?id=1065486] from ON_QA to VERIFIED
> LdapExtended login module does not handle a user that has a slash character in the uid
> --------------------------------------------------------------------------------------
>
> Key: SECURITY-796
> URL: https://issues.jboss.org/browse/SECURITY-796
> Project: PicketBox
> Issue Type: Bug
> Security Level: Public(Everyone can see)
> Components: PicketBox
> Affects Versions: PicketBox_4_0_20.Final
> Reporter: Derek Horton
> Assignee: Stefan Guilhen
> Attachments: SECURITY-796.patch
>
>
> LdapExtended login module does not handle a user that has a slash character in the uid.
> For example, JBoss will fail to authenticate the following user correctly:
> dn: uid=weird/user,ou=Users,dc=my-domain,dc=com
> uid: weird/user
> cn: Weird User
--
This message was sent by Atlassian JIRA
(v6.2.3#6260)
More information about the jboss-jira
mailing list