directory-api mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Flavio Mattos <flaviomatto...@gmail.com>
Subject Re: possible bugwhen adding {sha} password
Date Thu, 09 Jan 2014 06:13:50 GMT
Hi! Thanks for answering me..
I am expecting it without the quotes... As I sad it just happens for a few
entries. I would say 5% of the entries. Remembering that I am using the
same method to generate the hash value. I also have tried hard coded hash
and the problem persist.

Thanks

On Wednesday, January 8, 2014, Kiran Ayyagari wrote:

> On Thu, Jan 9, 2014 at 6:54 AM, Flavio Mattos <flaviomattos86@gmail.com<javascript:;>
> >wrote:
>
> > Hi everyone!
> >
> > I have noticed a strage behavior/bug using the client API when I try to
> > create entries with encrypted password using {SHA}.
> > I am invoking the method the following constructor:
> >
> >
> > What is happening is: For some reason the API is adding a "'" for a few
> > entries. To make sure the problem is not with my code I have tried to
> use a
> > hardcoded value.
> > When I go to the Apache Directory Studio the password is like this:
> > '{sha}W6ph5Mm5Pz8GgiULbPgzG37mj9g=' and instead of being {sha} encrypted
> it
> >
> this is the value of the hashed password(including the hash method), what
> else are you expecting?
>
> > becomes plain text password.
> > The code below is inside a loop where I add different entries..
> >
> > Entry entry = new DefaultEntry(dn, finalArray); //dn is a String and
> > finalArray is Object[]
> >
> > private void addEntry(Entry entry, LdapConnection conn) throws
> > LdapException {
> >
> >         AddRequest addRequest = new AddRequestImpl();
> >         addRequest.setEntry(entry);
> >         AddResponse response = conn.add(addRequest);
> >
> >         if
> >
> (ResultCodeEnum.SUCCESS.equals(response.getLdapResult().getResultCode())) {
> >             logger.log(Level.INFO, "Entry {0} added successfully",
> > entry.getDn().getName());
> >         } else {
> >             logger.log(Level.SEVERE, "Error adding entry {0} {1}", new
> > Object[]{entry.getDn().getName(),
> response.getLdapResult().getResultCode()
> > + "-" + response.getLdapResult().getResultCode().getMessage()});
> >             if (!
> >
> >
> response.getLdapResult().getResultCode().equals(ResultCodeEnum.ENTRY_ALREADY_EXISTS)
> > ) {
> >
> >
> >
> ldapExceptionManagerLocal.insert(this.createLdapSyncException(entry.getDn().getName(),
> > response.getLdapResult().getResultCode().name(),
> > response.getLdapResult().getResultCode().getMessage(),
> > LdapSyncException.ESYNC_TYPE.WALLET));
> >                 throw new
> > LdapException(response.getLdapResult().getResultCode().name());
> >             }
> >         }
> > }
> >
> >
> >
> > That is result of the toString method.
> > Entry:
> >     dn: uid=30,ou=customer_db,,dc=example,dc=com
> >     objectclass: inetOrgPerson
> >     objectclass: organizationalPerson
> >     objectclass: person
> >     objectclass: top
> >     stateorprovincename: NY
> >     postalcode: 10475
> >     mail: unittest30@example.com <javascript:;>
> >     sn: Doe
> >     userpassword: {sha}W6ph5Mm5Pz8GgiULbPgzG37mj9g=
> >     cn: John
> >     street: 999 N TEST AVE
> >     givenname: John
> >     localityname: UNITED STATES
> >
> >
> > Does anybody know if there is a bug already registered for this?
> >
> > Thanks
> >
> > Flavio
> >
>
>
>
> --
> Kiran Ayyagari
> http://keydap.com
>

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message