directory-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Pierre-Arnaud Marcelot (JIRA)" <j...@apache.org>
Subject [jira] [Resolved] (DIRSERVER-1735) When ads-pwdmaxage attribute is set to more then 2147483, then all user passwords are expirer forever.
Date Tue, 17 Jul 2012 12:08:34 GMT

     [ https://issues.apache.org/jira/browse/DIRSERVER-1735?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Pierre-Arnaud Marcelot resolved DIRSERVER-1735.
-----------------------------------------------

       Resolution: Fixed
    Fix Version/s: 2.0.0-M8
         Assignee: Pierre-Arnaud Marcelot

Fixed at commit 1362460.

http://svn.apache.org/viewvc?rev=1362460&view=rev

Thanks for the report and the fix.
                
> When ads-pwdmaxage attribute is set to more then 2147483, then all user passwords are
expirer forever.
> ------------------------------------------------------------------------------------------------------
>
>                 Key: DIRSERVER-1735
>                 URL: https://issues.apache.org/jira/browse/DIRSERVER-1735
>             Project: Directory ApacheDS
>          Issue Type: Bug
>          Components: core
>    Affects Versions: 2.0.0-M7
>            Reporter: Oldrich Novak
>            Assignee: Pierre-Arnaud Marcelot
>             Fix For: 2.0.0-M8
>
>
> We want to configure password max age for 90 days. We set ads-pwdmaxage to value 7776000.
From this moment all user passwords are always expired. We found the root cause:
> There is a bug in source code. package org.apache.directory.server.core.authn.PasswordUtil
class. Method
> public static boolean isPwdExpired( String pwdChangedZtime, int pwdMaxAgeSec ).
> You multiply -> long time = pwdMaxAgeSec * 1000;
> pwdMaxAgeSec is int and when it is 7776000 multiplied by 1000 will get out of int range.

> Please convert pwdMaxAgeSec to long before multiplying it by 1000 and assigning the result
into long time.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

        

Mime
View raw message