Bug #5243
openldapweb.cgi crashes with invalid password characters
0%
Description
Some characters cause the account creation process to fail out, and return a blank page to the user instead of the expected error. Noticed by Jim while assisting some folks to get set up with Morpho, on the production site at:
http://knb.ecoinformatics.org/knb/cgi-bin/ldapweb.cgi?cfg=knb
Updated by ben leinfelder over 10 years ago
- Assignee changed from Shaun Walbridge to Jim Regetz
Jim -- do you remember which characters?
Updated by Nick Brand over 10 years ago
Resetting passwords fails silently, leaving users without a way to login.
Until it's fixed there should be a warning not to use the characters which don't work.
Updated by ben leinfelder about 10 years ago
- Assignee changed from Jim Regetz to Jing Tao
- Target version changed from Unspecified to 2.2.0
Jing - would be great if we can check for some special characters and fail gracefully if their password uses ones that cannot be saved in LDAP.
Updated by ben leinfelder almost 10 years ago
While we do allow someone to create an account with special characters as the password, I am unable to login using the password. Tested with password: 所長願景
Perhaps we can just give people guidelines about using simple ASCII passwords?
Updated by Jing Tao almost 10 years ago
- Tracker changed from Task to Bug
- Target version changed from 2.2.0 to 2.2.1
move it to 2.2.1
Updated by ben leinfelder almost 10 years ago
- Target version changed from 2.2.1 to 2.3.0