[CWD-1763] LDAP Connectors are saved without the User DN password if the *Test Connection* button is used before saving

Type: Bug
Resolution: Fixed
Priority: Low
Fix Version/s: 2.5.2
Affects Version/s: 1.5, 1.6, 2.0
Component/s: Directory - LDAP
Labels:
- bug-fix
- squash

Bug Fix Policy:
View Atlassian Server bug fix policy

To Reproduce:

1-) Create a new LDAP Connector and provide all the necessary fields (including the password)
2-) Before saving (Continue button), click on the Test Connection button.
3-) If the connection is successful (don't click Continue until it is successful) click Continue.
4-) Go to the Users menu and try to search. The following error will be displayed:

Uncategorized exception occurred during LDAP processing; nested exception is javax.naming.NamingException: [LDAP: error code 1 - 00000000: LdapErr: DSID-0C090627, comment: In order to perform this operation a successful bind must be completed on the connection., data 0, vece�]; remaining name 'dc=sydney, dc=atlassian, dc=com'

5-) To fix the problem, go to the Connector, provide a password and then click Update
6-) Try to search Users again; the search will work without any problem.

Discovered while testing

CWD-2940 User input in some fields of the Directory Connector form is lost when the connection test fails

Closed

CWD-2955 Remote Crowd password lost when Test Connection button is used before saving

Closed

is duplicated by

CWD-1787 Easy to create an AD directory with no password

Closed

is related to

CWD-3096 Can't create a new LDAP connector directory with anonymous bind user dn

Closed

Delete added a comment - 06/Mar/2012 10:45 PM

We are also experiencing this issue - on an evaluation copy of Crowd 2.4. Same issue Betsy reported where the ID got locked and caused a Confluence outage. Is this a known issue with Crowd 2.4?

Delete added a comment - 06/Mar/2012 10:45 PM We are also experiencing this issue - on an evaluation copy of Crowd 2.4. Same issue Betsy reported where the ID got locked and caused a Confluence outage. Is this a known issue with Crowd 2.4?

Betsy Walker added a comment - 30/Oct/2011 12:20 AM

How on earth can this be a MINOR issue? If the user clicks Update too soon, then it is saved without a password, and with Active Directory, the account will become locked after 5 attempts to access it without the password. This can cause Confluence to lock out all users from logging on if it is set up to search multiple directories and one account used to access LDAP is locked.

Betsy Walker added a comment - 30/Oct/2011 12:20 AM How on earth can this be a MINOR issue? If the user clicks Update too soon, then it is saved without a password, and with Active Directory, the account will become locked after 5 attempts to access it without the password. This can cause Confluence to lock out all users from logging on if it is set up to search multiple directories and one account used to access LDAP is locked.

Ivar added a comment - 01/Sep/2011 11:26 AM

Half a year later, adding a new directory, I spend hours again on the same mistake (password not stored....) please fix this issue

Ivar added a comment - 01/Sep/2011 11:26 AM Half a year later, adding a new directory, I spend hours again on the same mistake (password not stored....) please fix this issue

Ivar added a comment - 24/Feb/2011 2:25 PM

I agree. It is confusing to see a blank field when you press 'Update'. I recon I put in my password 10 times before I read the small text below the field...

Ivar added a comment - 24/Feb/2011 2:25 PM I agree. It is confusing to see a blank field when you press 'Update'. I recon I put in my password 10 times before I read the small text below the field...

Renan Battaglin added a comment - 24/Sep/2010 11:34 AM - edited

This is a usability problem as well. We should always show the stars (*********) when there is already a password and use the blank box only when there is no password.

Renan Battaglin added a comment - 24/Sep/2010 11:34 AM - edited This is a usability problem as well. We should always show the stars (*********) when there is already a password and use the blank box only when there is no password.

Assignee:: ArvindA

Reporter:: Renan Battaglin

Affected customers:: 9 This affects my team

Watchers:: 7 Start watching this issue

Created:: 25/Nov/2009 1:31 AM

Updated:: 29/Jan/2025 7:42 PM

Resolved:: 05/Oct/2012 4:42 AM

Estimated:

12h

Remaining:

12h

Logged:

13m

LDAP Connectors are saved without the User DN password if the Test Connection button is used before saving

[CWD-1763] LDAP Connectors are saved without the User DN password if the Test Connection button is used before saving

Details

Description

Attachments

Issue Links

Forms

Activity

Collapse comment: Delete added a comment - 06/Mar/2012 10:45 PM

Expand comment: Delete added a comment - 06/Mar/2012 10:45 PM

Collapse comment: Betsy Walker added a comment - 30/Oct/2011 12:20 AM

Expand comment: Betsy Walker added a comment - 30/Oct/2011 12:20 AM

Collapse comment: Ivar added a comment - 01/Sep/2011 11:26 AM

Expand comment: Ivar added a comment - 01/Sep/2011 11:26 AM

Collapse comment: Ivar added a comment - 24/Feb/2011 2:25 PM

Expand comment: Ivar added a comment - 24/Feb/2011 2:25 PM

Collapse comment: Renan Battaglin added a comment - 24/Sep/2010 11:34 AM, Edited by Renan Battaglin - 24/Sep/2010 11:36 AM

Expand comment: Renan Battaglin added a comment - 24/Sep/2010 11:34 AM, Edited by Renan Battaglin - 24/Sep/2010 11:36 AM

People

Dates

Time Tracking

[CWD-1763] LDAP Connectors are saved without the User DN password if the Test Connection button is used before saving