yahoo-eng-team team mailing list archive
-
yahoo-eng-team team
-
Mailing list archive
-
Message #42087
[Bug 1521805] [NEW] Exceeding max password length of 4096 doesn't prompt error
Public bug reported:
While creating a user or updating the password of user, if the password
exceeds max 4096 characters then no error appears to the user. And it
seems its working normal.
while creating or updating user's password there could be 3 scenarios:
1) Password < 4096 characters
2) Password = 4096 characters
3) Password > 4096 characters
In case (1) password can be set and used normally
In case (2) and (3) password can be set, but if this user's credentials are used it gives authentication error.
For case (2) and (3) while setting or updating the password alert message should be given to the user, like password exceeds maximum acceptable characters length.
** Affects: keystone
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Identity (keystone).
https://bugs.launchpad.net/bugs/1521805
Title:
Exceeding max password length of 4096 doesn't prompt error
Status in OpenStack Identity (keystone):
New
Bug description:
While creating a user or updating the password of user, if the
password exceeds max 4096 characters then no error appears to the
user. And it seems its working normal.
while creating or updating user's password there could be 3 scenarios:
1) Password < 4096 characters
2) Password = 4096 characters
3) Password > 4096 characters
In case (1) password can be set and used normally
In case (2) and (3) password can be set, but if this user's credentials are used it gives authentication error.
For case (2) and (3) while setting or updating the password alert message should be given to the user, like password exceeds maximum acceptable characters length.
To manage notifications about this bug go to:
https://bugs.launchpad.net/keystone/+bug/1521805/+subscriptions
Follow ups
