Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-9808

Forgot Username self-service can return "username" that might not be the same as login "username"


    • Type: Bug
    • Status: Open
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: 13.5.0, 14.0.0
    • Fix Version/s: None
    • Component/s: self-service
    • Labels:
    • Support Ticket IDs:


      Problem Description

      In a scenario where an OpenAM Data Store has been configured so that the search attribute is different from the authentication attribute, for example:

      LDAP Users Search Attribute : cn
      Authentication Naming Attribute : uid

      ...then using the Self Service 'Forgot Username' functionality will send an email to the end-user containing a username based on the CN. However in this case this is not the same as the 'username' that is used to login which means that the response is invalid in this scenario and the end-user can't make use of this information.

      To reproduce

      1). Setup OpenAM, configure email and create a test user that has a UID that is different to the CN.

      2). Adjust the DataStore as described in the problem description.

      3). Enable the 'Forgotten Username' self-service option in OpenAM and then test this so that an email is sent to the test user. Note that the username in the email is based on the CN value.

      Expected behaviour

      The Forgot Username configuration needs to be able to return a different attribute for the "username".




            • Assignee:
              andy.itter Andy Itter
            • Votes:
              0 Vote for this issue
              4 Start watching this issue


              • Created: