Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Timed out
Priority: Low
Fix Version/s: N/A
Affects Version/s: 2.5.0, 2.6.0
Component/s: None
Labels:
- 2.6.1-bug-fix
- jac-cleanup-phase1

Symptom Severity:
Severity 3 - Minor
Bug Fix Policy:
View Atlassian Server bug fix policy

Description

we have code that goes:

if (!isPasswordCorrect())

{ throw new IOException("password was incorrect") }

but isPasswordCorrect can return false for more reasons than that. it logs the specific reason to debug level.

instead, it should throw the specific exception itself so that the user can see exactly whats going wrong. this sort of error should never be logged to debug.

the method is SSLUtils.isCorrectKeystorePassword

it is called in two places. from the WebServer and from EditServerSettingsAction - used for validation. The validation xml has the same problem. it has a "incorrect password" message regardless of why it returned false.

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Geoff Crain (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 04/Apr/2011 3:54 AM

Updated:: 05/Oct/2018 7:52 AM

Resolved:: 05/Oct/2018 7:52 AM