Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-17089

Forgot password functionality broken

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Critical
    • Resolution: Fixed
    • Affects Version/s: 5.5.2, 7.0.0, 6.5.3, 7.0.1
    • Fix Version/s: 5.5.3, 6.5.4, 7.1.0, 7.0.2
    • Component/s: self-service
    • Labels:
    • Environment:
      AM 7.0 running on Amazon Linux with Config and ID store externalized and also running on Amazon linux
    • Sprint:
      AM Sustaining Sprint 80, AM Sustaining Sprint 81
    • Story Points:
      3
    • Needs backport:
      Yes
    • Support Ticket IDs:

      Description

      Bug description

      Forgot password broken with an error "Unable to reset your password Invalid Code" when the end user tries to reset the password after a 1st failed attempt.

      How to reproduce the issue

      1. Access the AM console on any browser
      2. Login as administrator and configure the user self-service
      3. Configure the forgotpassword tab and uncheck captcha, email verification and security questions
      4. Save changes and logout of the admin console
      5. Forgot Password link should now be accessible from the login page.
      6. Click on forgot password link
      7. Enter the user name of an end user and click submit
      8. In the Reset Password screen enter the password and confirm password with values (12345678) and click submit
      9. AM comes back with an error (Password did not meet policy requirements)
      10. Enter a new password in the password and confirm password with values (87654321) and click submit. Password can also be a valid one, it still doesn't work
      11. AM console now displays an error message "Unable to reset password Invalid code". No option for the user to re-enter the password again
      Expected behaviour
      {..}User should be given the option to re-enter the password
      
      Current behaviour
      {...}AM ui displays an error message with no option to reset
      

      Work around

      No Work around at the moment

      Code analysis

      Nothing from my analysis. It seems like a UI error

      org.forgerock.$className.java
      ...
      

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                adam.heath Adam Heath
                Reporter:
                satish.kandagadla Satish Kandagadla
              • Votes:
                0 Vote for this issue
                Watchers:
                4 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: