[OPENAM-12511] user with the name "amadmin" can be created via the /users REST endpoint Created: 27/Feb/18  Updated: 29/Jul/19  Resolved: 22/Mar/18

Status: Closed
Project: OpenAM
Component/s: XUI
Affects Version/s: 6.0.0
Fix Version/s: 6.0.0, 5.5.2

Type: Bug Priority: Major
Reporter: Eugenia Sergueeva [X] (Inactive) Assignee: Dipu Seminlal
Resolution: Fixed Votes: 0
Labels: AME, Must-Fix
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Target Version/s:
Needs backport:
Verified Version/s:
Needs QA verification:
Functional tests:
Are the reproduction steps defined?:
Yes and I used the same an in the description


Bug description

User with the name "amadmin" can be created via the new XUI interface (which uses the /users REST endpoint)

How to reproduce the issue

Go to top level realm -> Identities -> new
Add a new user with the name amadmin

Expected behaviour
a new user should not be created, as a super user with this name already exists
Current behaviour
a new user gets created

Comment by Andy Hall [ 02/Mar/18 ]

The longer term ideal is that amadmin is not a special user. But for now we should stop this from being created to avoid errors elsewhere.

Comment by Ľubomír Mlích [ 26/Jul/19 ]

I can create amadmin user in AM 5.5.1 and AM 5.5.2-M6 - there is JATO UI, I'm not able to login to that new amadmin user with new password using LDAP authentication module, there is error "Authentication module denied". I'm able to login as amadmin with right password.

Comment by Adam Heath [ 26/Jul/19 ]

Updated the bug title to better reflect the issue that was actually addressed by the fix here. Suggested to Ľubomír Mlích that a separate issue be raised here to cover this behaviour in the JATO "subjects" pages mentioned above

Comment by Ľubomír Mlích [ 29/Jul/19 ]

Created OPENAM-15275

Generated at Tue Nov 24 07:09:30 UTC 2020 using Jira 7.13.12#713012-sha1:6e07c38070d5191bbf7353952ed38f111754533a.