Details
-
Suggestion
-
Resolution: Fixed
-
None
Description
Summary
When a user fails to authenticate against a directory due to an incorrect username/password combination, an INFO message like this appears in the logs.
2021-06-04 15:34:21,101 http-nio-8095-exec-12 INFO [crowd.manager.application.ApplicationServiceGeneric] Invalid credentials for user admin in directory Active Directory (999999), aborting
Suggestion
Some administrators may want to troubleshoot the issue through the logs and in the case of the example above, the login failed not due to an incorrect password, but an extra space after the username (e.g. "admin ").
It's not immediately clear to the admin that this is the case because it's easily overlooked. Therefore, it would be great if the username in the INFO message could be quoted like this:
2021-06-04 15:34:21,101 http-nio-8095-exec-12 INFO [crowd.manager.application.ApplicationServiceGeneric] Invalid credentials for user 'admin ' in directory Active Directory (999999), aborting