#33097 [Opn->Bgs]: OCI_Password_Change fails to change password

[tony2001]

 ID:               33097
 Updated by:       [EMAIL PROTECTED]
 Reported By:      dboeke at eesus dot jnj dot com
-Status:           Open
+Status:           Bogus
 Bug Type:         OCI8 related
 Operating System: Win2k Server ver 5.0.2195 SP4
 PHP Version:      5.0.4
 New Comment:

Yes, I was able to reproduce it once, but after some time spent on
debugging/dropping and creating new users I can't reproduce it
anymore.
Anyway, this is not a PHP bug, because PHP just calls
OCIPasswordChange() function and if it fails randomly there is nothing
we can do. 
Try to search metalink database and bug Oracle people.


Previous Comments:
------------------------------------------------------------------------

[2005-05-23 21:03:02] dboeke at eesus dot jnj dot com

<?php
$oraSid = 'PROD1';
$userID = 'UserNm';
$oldPwd = 'Qqww!$123';
$newPwd = 'Zzxx!$456';

$conn = @oci_new_connect($userID, $oldPwd, $oraSid);
        
if ($conn) {
        $result = @oci_password_change($conn, $userID, $oldPwd, $newPwd);
        $e = ($result) ? array('message'=>'Success') : oci_error($conn);
        @oci_close($conn);
} else { 
        $e = oci_error(); 
}

echo $e['message'];
?>

Same Error (ORA-28008: invalid old password ) with the above code.

------------------------------------------------------------------------

[2005-05-23 20:19:25] [EMAIL PROTECTED]

And what if you remove all this stuff not related to the OCI itself
(like strpslashes, forms etc.) ?

------------------------------------------------------------------------

[2005-05-23 19:12:07] dboeke at eesus dot jnj dot com

I can use the Password command in SQL Plus to successfully change the
password.  Also confirmed that other passwords using similar structure
fail, ie:

Zzxx!$123
Aabb!$456

I haven't been able to check the local 9i environment yet, cause I
don't have a user account, but I have requested one, and will update
when I can.

------------------------------------------------------------------------

[2005-05-21 23:11:11] [EMAIL PROTECTED]

And please try to use oci_password_change() with your locally installed
Oracle.

------------------------------------------------------------------------

[2005-05-21 23:10:13] [EMAIL PROTECTED]

And what happens if you try to change the password using sqlplus (but
not with "alter user" command) ?

------------------------------------------------------------------------

The remainder of the comments for this report are too long. To view
the rest of the comments, please view the bug report online at
    http://bugs.php.net/33097

-- 
Edit this bug report at http://bugs.php.net/?id=33097&edit=1