Uploaded image for project: 'JSPWiki'
  1. JSPWiki
  2. JSPWIKI-311

Cannot save user profile in container managed authentication mode

    XMLWordPrintableJSON

    Details

      Description

      I use an NTLM servlet filter for authentication. I didn't uncomment container-managed section in web.xml. Instead,
      I subclass WebContainerAuthorizer to disable web.xml processing. This gives me a very simple container-managed
      authentication/authroization environment.

      User profile now has only two editable fields: Name and Email Address. However, save profile failed
      because in this unique combination, both password and existingPassword are null.

      In file com.ecyrd.jspwiki.auth.user.JDBCUserDatabase.save(...), line 598
      if ( !password.equals( existingPassword ) )
      will result exception because password is null.

      possible solution: (1) check password is null or not at line 598, or (2) if password is null, make it an empty string before line 598.
      I don't know if (1) or (2) will cause any side impact or not.

        Attachments

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              hctu Hai-Chen Tu
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: