Loading...

XML

Word

Printable

Details

Type: Suggestion
Resolution: Fixed
Fix Version/s: 4.4.4, 5.0.3
Component/s: Authentication / Security
Labels:
None

Feedback Policy:

Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

Description

Summary

When a user fails to authenticate against a directory due to an incorrect username/password combination, an INFO message like this appears in the logs.

2021-06-04 15:34:21,101 http-nio-8095-exec-12 INFO [crowd.manager.application.ApplicationServiceGeneric] Invalid credentials for user admin  in directory Active Directory (999999), aborting

Suggestion

Some administrators may want to troubleshoot the issue through the logs and in the case of the example above, the login failed not due to an incorrect password, but an extra space after the username (e.g. "admin ").

It's not immediately clear to the admin that this is the case because it's easily overlooked. Therefore, it would be great if the username in the INFO message could be quoted like this:

2021-06-04 15:34:21,101 http-nio-8095-exec-12 INFO [crowd.manager.application.ApplicationServiceGeneric] Invalid credentials for user 'admin ' in directory Active Directory (999999), aborting

Attachments

Issue Links

is cloned by: KRAK-4705 Loading...

mentioned in: Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...

(1 mentioned in)

Activity

People

Assignee:: Rostyslav Shurukhin

Reporter:: Athirah Zolkefli

Votes:: 2 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 07/Jun/2021 2:50 PM

Updated:: 14/Dec/2022 6:35 PM

Resolved:: 14/Nov/2022 12:35 PM