[jira] [Assigned] (KARAF-2755) Encrypt password mechanism pollutes the group

Guillaume Nodet (JIRA) Tue, 15 Jul 2014 06:41:38 -0700

     [ 
https://issues.apache.org/jira/browse/KARAF-2755?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Guillaume Nodet reassigned KARAF-2755:
--------------------------------------

    Assignee: Guillaume Nodet  (was: Jean-Baptiste Onofré)

> Encrypt password mechanism pollutes the group
> ---------------------------------------------
>
>                 Key: KARAF-2755
>                 URL: https://issues.apache.org/jira/browse/KARAF-2755
>             Project: Karaf
>          Issue Type: Bug
>          Components: karaf-security
>            Reporter: Jean-Baptiste Onofré
>            Assignee: Guillaume Nodet
>             Fix For: 2.4.0, 4.0.0, 3.0.2
>
>
> By enabling the encryption (in etc/org.apache.karaf.jaas.cfg), Karaf ignores 
> if we talk about users or groups, and so encrypts the groups, resulting to 
> something like this in etc/users.properties:
> {code}
> karaf = {CRYPT}e7ebf747769e8522b52d1bf47f718788{CRYPT},_g_:admingroup
> _g_\:admingroup = 
> {CRYPT}db0f6f37ebeb6ea09489124345af2a45{CRYPT},admin,manager,viewer
> {code}
> The encryption service should check if the considered line is an user or a 
> group, and just crypts the user passwords.



--
This message was sent by Atlassian JIRA
(v6.2#6252)

[jira] [Assigned] (KARAF-2755) Encrypt password mechanism pollutes the group

Reply via email to