Uploaded image for project: 'OpenIDM'
  1. OpenIDM
  2. OPENIDM-11071

internal/user scripted filter has been removed

    Details

    • Type: Story
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 6.5.0
    • Fix Version/s: 6.5.0
    • Component/s: _Update, documentation
    • Labels:
      None
    • Target Version/s:
    • Story Points:
      1
    • Sprint:
      OpenIDM Sprint 6.5-8

      Description

      In router.json, the third filter was used to hash the password field of create and update requests for internal user objects. That has been removed in favor of using the encryption key alias as defined in boot.properties since internal objects are now 1st class citizens.

      Removal of this router filter should be noted as one of the update checklist items for those updating to 6.5 or later. It presently only impacts how internal user passwords are encrypted and is done as a result of the delegated admin work. It is not strictly necessary to remove the filter if the user doesn't intend to take advantage of DA.

      The removed filter is:

              {
                  "pattern" : "internal/user((/.+)|$)",
                  "onRequest" : {
                      "type" : "text/javascript",
                      "source" : "request.content.password = require('crypto').hash(request.content.password);"
                  },
                  "methods" : [
                      "create",
                      "update"
                  ]
              }
      

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                nabil.maynard Nabil Maynard
                Reporter:
                jbranch Jon Branch
              • Votes:
                0 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: