-
Bug
-
Resolution: Unresolved
-
Low
-
None
-
3.5.0
-
2
-
Severity 3 - Minor
-
1
-
Issue Summary
The 'Change password' feature for an application in Crowd does not result in the password to be updated. The password hash in the DB remains the same when checked using this query:
select credential from cwd_application where application_name='confluence';
In your external application (e.g. Confluence), if you try to change the application password to the new password, Confluence will prompt that the authentication failed. If you switch back to the original password, the authentication will pass.
Environment
Crowd 3.5.0. Does not occur in Crowd 3.4.4.
Steps to Reproduce
- Create a Confluence application in Crowd and set the password to 'test'.
- In Confluence, create a Crowd directory and set the application password to 'test'.
- The directory creation and sync will be successful.
- In Crowd, change the password via 'Change password' to 'confluence'.
- In Confluence, edit the Crowd directory and insert the new password 'confluence' to the 'Application Password' field.
- Click on 'Test Settings'.
Expected Results
The password will be updated and the directory settings could be saved.
Actual Results
You will see this error in the UI.
Connection test failed. Response from the server:
com.atlassian.crowd.exception.InvalidAuthenticationException: Application failed to authenticate
Workaround
- Update the cwd_application.credential field directly with the password hash. For example:
UPDATE cwd_application SET credential = '{PKCS5S2}pm5SMA8ZmbKl5K0s/dLcQllxpZFQ6M3RiWRsarEx7Mru9R2Ox0ktWZaHof+euNKG' WHERE application_name='confluence';
- Create a new application in Crowd with the correct password.