Uploaded image for project: 'Crowd Data Center'
  1. Crowd Data Center
  2. CWD-4356

Special Characters in application password will break SSO authentication

    XMLWordPrintable

Details

    • Bug
    • Resolution: Not a bug
    • Low
    • None
    • 2.8
    • None
    • None

    Description

      When an application is configured in Crowd with SSO with a password that includes special characters such as \, the application authentication will fail. So far I've tested and confirmed that the characters !@#$%&*() do not seem to break the application authentication, however, using them may result in the behavior described in https://jira.atlassian.com/browse/CWD-4243

      The Crowd logs contain the following during the failed authentication:

      2015-05-12 12:57:42,956 http-bio-8095-exec-25 INFO [plugin.rest.filter.BasicApplicationAuthenticationFilter] Invalid authentication for application with name 'jira641'

      Steps to Reproduce:

      1. Setup Crowd with SSO enabled
      2. Setup JIRA to use Crowd (with SSO enabled). Use an application password like pass\word
      3. Attempt to log into JIRA and observe login failure

      Attachments

        Issue Links

          is related to

          Bug - A problem which impairs or prevents the functions of the product. CWD-4243 special characters (@, $, & etc) in the application password causes the client application to not provide admin rights when using SSO

          • Low - Low priority issues
          • Closed
          mentioned in

          Page Loading...

          Page Loading...

          Page Loading...

          Activity

            People

              Unassigned Unassigned
              ddiblasio David Di Blasio
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: