[CWD-4243] special characters (@, $, & etc) in the application password causes the client application to not provide admin rights when using SSO - Create and track feature requests for Atlassian products.

XML

Word

Printable

Details

Type: Bug
Status: Closed (View Workflow)
Priority: Low
Resolution: Cannot Reproduce
Affects Version/s: 2.8
Fix Version/s: None
Component/s: None
Labels:
None

Bug Fix Policy:
View Atlassian Server bug fix policy

Description

Note: This hasn't been replicated locally by Atlassian yet, but has been raised by multiple customers. If you have hit this issue and can provide steps to reproduce, please add them as a comment on this bug.

When an application is configured in Crowd to with a password that included a non-alphanumeric character, users that should have access to the admin consoles of the client application consoles are denied access.

The Crowd logs contain the following:

2014-09-20 12:55:13,872 http-bio-8095-exec-19 INFO [plugin.rest.filter.BasicApplicationAuthenticationFilter] Invalid authentication for application with name 'conf'

Suspected Steps to Reproduce:

Setup Crowd with SSO enabled
Setup Confluence (or JIRA etc) to use Crowd (with SSO enabled). Use a special character in the application password.
Sign in to Confluence with an admin user and attempt to log into the admin console
Note: This problem seems to occur after some time. The admin access will work for a while before failing.

Attachments

Issue Links

relates to

CWD-4356 Special Characters in application password will break SSO authentication

Closed

Activity

People

Assignee:: Unassigned

Reporter:: lachland

Votes:: 1 Vote for this issue

Watchers:: 5 Start watching this issue

Dates

Created:: 16/Feb/2015 1:49 AM

Updated:: 15/Aug/2019 7:05 AM

Resolved:: 13/Jan/2016 12:23 AM