[ https://issues.apache.org/jira/browse/DIRSERVER-2069?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Emmanuel Lecharny updated DIRSERVER-2069: ----------------------------------------- Component/s: kerberos > Failed to change password if realm is not EXAMPLE.COM > ----------------------------------------------------- > > Key: DIRSERVER-2069 > URL: https://issues.apache.org/jira/browse/DIRSERVER-2069 > Project: Directory ApacheDS > Issue Type: Bug > Components: kerberos > Reporter: Alexander Bersenev > Priority: Major > Attachments: realm.patch > > > From > verifyServiceTicket(protocol-kerberos/src/main/java/org/apache/directory/server/kerberos/changepwd/service/ChangePasswordService.java): > ChangePasswordConfig config = changepwContext.getConfig(); > ... > String primaryRealm = config.getPrimaryRealm(); > ... > if ( !ticket.getRealm().equals( primaryRealm ) || > !serverPrincipal.getName().equals( changepwPrincipal.getName() ) ) > { > throw new KerberosException( > org.apache.directory.shared.kerberos.exceptions.ErrorType.KRB_AP_ERR_NOT_US ); > } > The primary realm is always EXAMPLE.COM because an initialization of > primaryRealm in ChangePasswordConfig was forgot. > Attached one-string patch fixes it. -- This message was sent by Atlassian JIRA (v7.6.3#76005) --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@directory.apache.org For additional commands, e-mail: dev-h...@directory.apache.org