Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-8642

Inconsistency in REST response after resetting password (user self.service) through 12.0.x


    • Type: Bug
    • Status: Closed
    • Priority: Minor
    • Resolution: Fixed
    • Affects Version/s: 12.0.3
    • Fix Version/s: 12.0.4
    • Component/s: self-service
    • Labels:
    • Sprint:
      AM Sustaining Sprint 20, AM Sustaining Sprint 21, AM Sustaining Sprint 25


      If you send the request for password reset for a user in the restetPassword realm, you receive a mail with link to reset the password, if you click on it the password is reset and REST response contains the the realm with small letters. In 12.0.1 realm is displayed correctly with capital P.

      Steps to reproduce:
      1) Create realm resetPassword
      2) Enable the forgot password service
      3) Create user in realm resetPassword
      4) Enable SMTP host (if needed)
      5) Request password reset

      REST response after clicking on link and resetting password:

      TTP/1.1 200 OK
      Server: Apache-Coyote/1.1
      Cache-Control: no-cache
      Content-API-Version: protocol=1.0,resource=2.0
      Content-Type: application/json;charset=UTF-8
      Content-Length: 947
      Date: Thu, 31 Mar 2016 10:12:35 GMT
          "username": "testPasswordReset",
          "realm": "/resetpassword",

      Expected behaviour:
      Password is reset. REST response after password reset contains: "realm: resetPassword"
      Actual Behaviour:
      Password is reset. REST response after password reset contains: "realm: resetpassword"


          Issue Links



              • Assignee:
                jonthomas Jonathan Thomas
                Filip.Kuban Filip Kubáň [X] (Inactive)
                QA Assignee:
                Filip Kubáň [X] (Inactive)
              • Votes:
                0 Vote for this issue
                2 Start watching this issue


                • Created: