directory-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Oldrich Novak (JIRA)" <j...@apache.org>
Subject [jira] [Created] (DIRSERVER-1735) When ads-pwdmaxage attribute is set to more then 2147483, then all user passwords are expirer forever.
Date Wed, 11 Jul 2012 13:26:35 GMT
Oldrich Novak created DIRSERVER-1735:
----------------------------------------

             Summary: When ads-pwdmaxage attribute is set to more then 2147483, then all user
passwords are expirer forever.
                 Key: DIRSERVER-1735
                 URL: https://issues.apache.org/jira/browse/DIRSERVER-1735
             Project: Directory ApacheDS
          Issue Type: Bug
          Components: core
    Affects Versions: 2.0.0-M7
            Reporter: Oldrich Novak


We want to configure password max age for 90 days. We set ads-pwdmaxage to value 7776000.
From this moment all user passwords are always expired. We found the root cause:
There is a bug in source code. package org.apache.directory.server.core.authn.PasswordUtil
class. Method
public static boolean isPwdExpired( String pwdChangedZtime, int pwdMaxAgeSec ).
You multiply -> long time = pwdMaxAgeSec * 1000;
pwdMaxAgeSec is int and when it is 7776000 multiplied by 1000 will get out of int range. 
Please convert pwdMaxAgeSec to long before multiplying it by 1000 and assigning the result
into long time.


--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

        

Mime
View raw message