directory-api mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Kiran Ayyagari <kayyag...@apache.org>
Subject Re: possible bugwhen adding {sha} password
Date Thu, 09 Jan 2014 03:28:15 GMT
On Thu, Jan 9, 2014 at 6:54 AM, Flavio Mattos <flaviomattos86@gmail.com>wrote:

> Hi everyone!
>
> I have noticed a strage behavior/bug using the client API when I try to
> create entries with encrypted password using {SHA}.
> I am invoking the method the following constructor:
>
>
> What is happening is: For some reason the API is adding a "'" for a few
> entries. To make sure the problem is not with my code I have tried to use a
> hardcoded value.
> When I go to the Apache Directory Studio the password is like this:
> '{sha}W6ph5Mm5Pz8GgiULbPgzG37mj9g=' and instead of being {sha} encrypted it
>
this is the value of the hashed password(including the hash method), what
else are you expecting?

> becomes plain text password.
> The code below is inside a loop where I add different entries..
>
> Entry entry = new DefaultEntry(dn, finalArray); //dn is a String and
> finalArray is Object[]
>
> private void addEntry(Entry entry, LdapConnection conn) throws
> LdapException {
>
>         AddRequest addRequest = new AddRequestImpl();
>         addRequest.setEntry(entry);
>         AddResponse response = conn.add(addRequest);
>
>         if
> (ResultCodeEnum.SUCCESS.equals(response.getLdapResult().getResultCode())) {
>             logger.log(Level.INFO, "Entry {0} added successfully",
> entry.getDn().getName());
>         } else {
>             logger.log(Level.SEVERE, "Error adding entry {0} {1}", new
> Object[]{entry.getDn().getName(), response.getLdapResult().getResultCode()
> + "-" + response.getLdapResult().getResultCode().getMessage()});
>             if (!
>
> response.getLdapResult().getResultCode().equals(ResultCodeEnum.ENTRY_ALREADY_EXISTS)
> ) {
>
>
> ldapExceptionManagerLocal.insert(this.createLdapSyncException(entry.getDn().getName(),
> response.getLdapResult().getResultCode().name(),
> response.getLdapResult().getResultCode().getMessage(),
> LdapSyncException.ESYNC_TYPE.WALLET));
>                 throw new
> LdapException(response.getLdapResult().getResultCode().name());
>             }
>         }
> }
>
>
>
> That is result of the toString method.
> Entry:
>     dn: uid=30,ou=customer_db,,dc=example,dc=com
>     objectclass: inetOrgPerson
>     objectclass: organizationalPerson
>     objectclass: person
>     objectclass: top
>     stateorprovincename: NY
>     postalcode: 10475
>     mail: unittest30@example.com
>     sn: Doe
>     userpassword: {sha}W6ph5Mm5Pz8GgiULbPgzG37mj9g=
>     cn: John
>     street: 999 N TEST AVE
>     givenname: John
>     localityname: UNITED STATES
>
>
> Does anybody know if there is a bug already registered for this?
>
> Thanks
>
> Flavio
>



-- 
Kiran Ayyagari
http://keydap.com

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message