Uploaded image for project: 'Jackrabbit Oak'
  1. Jackrabbit Oak
  2. OAK-8408

UserImporter must not trigger creation of rep:pwd node unless included in xml (initial-pw-change)

    XMLWordPrintableJSON

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 1.16.0
    • Component/s: core, security
    • Labels:
      None

      Description

      when xml-importing an existing user (i.e. Tree doesn't have status NEW upon import) calling UserManagerImpl.setPassword will force the creation of the rep:pwd node and rep:passwordLastModified property contained therein if theinitial-password-change feature is enabled.

      imo the rep:pwd (and any properties contained therein) must not be auto-created by should only be imported if contained in the XML.

      proposed fix: UserManagerImpl.setPassword already contains special treatment for the password hashing triggered upon xml import -> renaming that flag and respect it for the handling of the pw last modified.

      Alex Deparvu, wdyt?

        Attachments

        1. OAK-8408-tests.patch
          30 kB
          Angela Schreiber
        2. OAK-8408.patch
          5 kB
          Angela Schreiber

          Activity

            People

            • Assignee:
              angela Angela Schreiber
              Reporter:
              angela Angela Schreiber
            • Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: