Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-12050

Password error message not specific

    Details

    • Target Version/s:
    • Rank:
      1|hzpmcf:
    • Sprint:
      AM Sustaining Sprint 46, AM Sustaining Sprint 47
    • Story Points:
      5
    • Support Ticket IDs:

      Description

      environment:

      13.5.1

       

      issue background:

      In the previous version, for any violations of the password policy for the new password, the error message received was same as the error message received from OpenDJ. But, with the new OpenAM version, the error message seems to be getting modified and for all violations same message is returned by OpenAM.

      Eg: When the new password had only lower case password - The error message received from the rest api was -

      The provided password value was rejected by a password validator: The provided password did not contain enough characters from the character set 'ABCDEFGHIJKLMNOPQRSTUVWXYZ'. The minimum number of characters from that set that must be present in user passwords is 1

      Now, the error message we get after upgrading to 13.5.1 is - The password did not meet the password policy requirements

       

      business impact: show clear errors to user as to what is the problem with the password,

       

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                sachiko Sachiko Wallace
                Reporter:
                jobby.thomas Jobby Thomas
              • Votes:
                0 Vote for this issue
                Watchers:
                9 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: