Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-5082

DJLDAPv3Repo setAttributes may add unnecessary objectclasses to modifyRequest.

    Details

    • Sprint:
      Sprint 76 - Sustaining
    • Support Ticket IDs:

      Description

      In DJLDAPv3Repo unnecessary objectclasses may be added to a modify request due to a being missed by a duplicate check.

      A removeAll() call on a CaseInsensitiveHashSet will not correctly compare on a the contains call.

      To Reproduce:

      1) Create a user.
      2) In users entry in DJ modify inetuser objectclass value - set to inetUser (capital u)
      3 )Try to modify user password using rest e.g using admin user token

      curl --request PUT --header "iplanetDirectoryPro: AQIC5wM....*" --header "Content-Type: application/json" --data '

      { "userpassword": "comeoncomeon" }

      ' http://openam-local.example.com:8080/openam/json/users/test

      You should receive error and IdRepo log error

        Attachments

          Activity

            People

            • Assignee:
              jonthomas Jonathan Thomas
              Reporter:
              jonthomas Jonathan Thomas
            • Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:

                Time Tracking

                Estimated:
                Original Estimate - Not Specified
                Not Specified
                Remaining:
                Remaining Estimate - 0h
                0h
                Logged:
                Time Spent - 7h
                7h