Return-Path: Delivered-To: apmail-geronimo-dev-archive@www.apache.org Received: (qmail 8884 invoked from network); 8 Sep 2006 15:25:05 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199) by minotaur.apache.org with SMTP; 8 Sep 2006 15:25:05 -0000 Received: (qmail 85155 invoked by uid 500); 8 Sep 2006 15:25:00 -0000 Delivered-To: apmail-geronimo-dev-archive@geronimo.apache.org Received: (qmail 85100 invoked by uid 500); 8 Sep 2006 15:25:00 -0000 Mailing-List: contact dev-help@geronimo.apache.org; run by ezmlm Precedence: bulk list-help: list-unsubscribe: List-Post: Reply-To: dev@geronimo.apache.org List-Id: Delivered-To: mailing list dev@geronimo.apache.org Received: (qmail 84830 invoked by uid 99); 8 Sep 2006 15:24:58 -0000 Received: from asf.osuosl.org (HELO asf.osuosl.org) (140.211.166.49) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 08 Sep 2006 08:24:58 -0700 X-ASF-Spam-Status: No, hits=0.0 required=10.0 tests= X-Spam-Check-By: apache.org Received: from [209.237.227.198] (HELO brutus.apache.org) (209.237.227.198) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 08 Sep 2006 08:24:58 -0700 Received: from brutus (localhost [127.0.0.1]) by brutus.apache.org (Postfix) with ESMTP id 1C22E410010 for ; Fri, 8 Sep 2006 15:21:24 +0000 (GMT) Message-ID: <21659596.1157728884112.JavaMail.jira@brutus> Date: Fri, 8 Sep 2006 08:21:24 -0700 (PDT) From: "Vamsavardhana Reddy (JIRA)" To: dev@geronimo.apache.org Subject: [jira] Assigned: (GERONIMO-2236) keystore portlet - providing a null or incorrect password on edit unlock can only be recovered with server recycle In-Reply-To: <12157924.1154026993888.JavaMail.jira@brutus> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-Virus-Checked: Checked by ClamAV on apache.org X-Spam-Rating: minotaur.apache.org 1.6.2 0/1000/N [ http://issues.apache.org/jira/browse/GERONIMO-2236?page=all ] Vamsavardhana Reddy reassigned GERONIMO-2236: --------------------------------------------- Assignee: Vamsavardhana Reddy > keystore portlet - providing a null or incorrect password on edit unlock can only be recovered with server recycle > ------------------------------------------------------------------------------------------------------------------ > > Key: GERONIMO-2236 > URL: http://issues.apache.org/jira/browse/GERONIMO-2236 > Project: Geronimo > Issue Type: Bug > Security Level: public(Regular issues) > Components: console > Affects Versions: 1.1.1, 1.2, 1.1 > Environment: windows xp > tomcat or jetty > Reporter: Joe Bohn > Assigned To: Vamsavardhana Reddy > Fix For: 1.2, 1.1.x > > > Providing an incorrect or null password when attempting to unlock a keystore for edit creates a situation where the keystore appears to be in edit mode but does not show existing credentials (although new credentials can be created). Even if the keystore is locked and then subsequently unlocked for edit using the correct password, the credentials are never again shown for that "run of the server". Recovery requires a server recycle. After the server recycle the original set of credentials plus any created from the previous run (when the edit mode was entered with the wrong password) are displayed. -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira