Apache Roller
  1. Apache Roller
  2. ROL-1925

Patch for the bug of OpenID only authentication

    Details

      Description

      1. Fix the javascript error in Register page:
      错误: document.register['bean.passwordText'] is undefined
      源文件:https://example.com/roller/roller-ui/register.rol;jsessionid=043E3D9D1D765A9BD3976074DC56670C
      行:1062

      2. Generate a random string for the non-nullable passphrase field.

      3. Override lookupRealm method of OpenIDAuthenticationProcessingFilter in spring-security-openid-2.0.5 to ignore the issue about appending wrong port to the url, for example, it may append "80" to an url with https scheme.

      4. Use openid_identifier as the html form field to match the openid spec, and ignore duplicate ID "j_username" while using hybrid authentication methods. Enhanced the function: restoring username from cookie.

      5. svn rm some .classpath .project .settings files

      6. orgnized the spring dependencies

      The patch file is attached.

        Activity

        Hide
        Shutra added a comment -

        The patch file.

        Show
        Shutra added a comment - The patch file.
        Hide
        Glen Mazza added a comment -

        OpenID is working fine now using Spring Security 3.1.4 (supplied patch uses Spring Security 2). Thanks for the patch anyway!

        Show
        Glen Mazza added a comment - OpenID is working fine now using Spring Security 3.1.4 (supplied patch uses Spring Security 2). Thanks for the patch anyway!

          People

          • Assignee:
            Glen Mazza
            Reporter:
            Shutra
          • Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved:

              Development