Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-10421

Unable to authenticate to XUI when username contains special characters

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 13.5.1, 14.0.0
    • Fix Version/s: 13.5.1, 14.0.0
    • Component/s: XUI
    • Labels:
    • Sprint:
      AM Sustaining Sprint 33
    • Story Points:
      2
    • Support Ticket IDs:

      Description

      Steps to reproduce:

      • create a file called the-user.ldif:
        dn: uid=a\\world\\\+hello\+minus,ou=People,dc=example,dc=com
        uid: a\world\+hello+minus
        cn: A World Hello Minus
        objectClass: inetOrgPerson
        objectClass: organizationalPerson
        objectClass: person
        objectClass: top
        ou: People
        sn: Hello Minus
        userPassword: changeit
        
      • Create the user in your OpenDJ instance:
        $ ldapmodify -p 1389 -D "cn=Directory Manager" -w password -f the-user.ldif 
        
      • Go to OpenAM login screen, and try to authenticate using the a\world+hello+minus changeit combo
      • After the fix of OPENAM-10135 (but realistically even before that) you will get an HTTP 404, because XUI did not URI encode the resource name for the json/users call.

      Note that without the OPENAM-10135 fix chances are authentication will fail much earlier due to LDAP escaping issues.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                peter.major Peter Major [X] (Inactive)
                Reporter:
                peter.major Peter Major [X] (Inactive)
                QA Assignee:
                Filip Kubáň [X] (Inactive)
              • Votes:
                0 Vote for this issue
                Watchers:
                6 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: