Return-Path: Delivered-To: apmail-geronimo-dev-archive@www.apache.org Received: (qmail 86648 invoked from network); 20 Nov 2006 09:45:29 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 20 Nov 2006 09:45:29 -0000 Received: (qmail 31948 invoked by uid 500); 20 Nov 2006 09:45:37 -0000 Delivered-To: apmail-geronimo-dev-archive@geronimo.apache.org Received: (qmail 31779 invoked by uid 500); 20 Nov 2006 09:45:36 -0000 Mailing-List: contact dev-help@geronimo.apache.org; run by ezmlm Precedence: bulk list-help: list-unsubscribe: List-Post: Reply-To: dev@geronimo.apache.org List-Id: Delivered-To: mailing list dev@geronimo.apache.org Received: (qmail 31768 invoked by uid 99); 20 Nov 2006 09:45:36 -0000 Received: from herse.apache.org (HELO herse.apache.org) (140.211.11.133) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 20 Nov 2006 01:45:36 -0800 X-ASF-Spam-Status: No, hits=0.0 required=10.0 tests= X-Spam-Check-By: apache.org Received: from [140.211.11.4] (HELO brutus.apache.org) (140.211.11.4) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 20 Nov 2006 01:45:25 -0800 Received: from brutus (localhost [127.0.0.1]) by brutus.apache.org (Postfix) with ESMTP id 67EB77142F9 for ; Mon, 20 Nov 2006 01:45:05 -0800 (PST) Message-ID: <14684436.1164015905423.JavaMail.jira@brutus> Date: Mon, 20 Nov 2006 01:45:05 -0800 (PST) From: "Vamsavardhana Reddy (JIRA)" To: dev@geronimo.apache.org Subject: [jira] Updated: (GERONIMO-2236) keystore portlet - providing a null or incorrect password on edit unlock can only be recovered with server recycle In-Reply-To: <12157924.1154026993888.JavaMail.jira@brutus> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-Virus-Checked: Checked by ClamAV on apache.org [ http://issues.apache.org/jira/browse/GERONIMO-2236?page=all ] Vamsavardhana Reddy updated GERONIMO-2236: ------------------------------------------ Fix Version/s: 2.0 (was: 1.1.x) > keystore portlet - providing a null or incorrect password on edit unlock can only be recovered with server recycle > ------------------------------------------------------------------------------------------------------------------ > > Key: GERONIMO-2236 > URL: http://issues.apache.org/jira/browse/GERONIMO-2236 > Project: Geronimo > Issue Type: Bug > Security Level: public(Regular issues) > Components: console > Affects Versions: 1.2, 1.1, 1.1.1 > Environment: windows xp > tomcat or jetty > Reporter: Joe Bohn > Assigned To: Vamsavardhana Reddy > Fix For: 1.2, 2.0 > > > Providing an incorrect or null password when attempting to unlock a keystore for edit creates a situation where the keystore appears to be in edit mode but does not show existing credentials (although new credentials can be created). Even if the keystore is locked and then subsequently unlocked for edit using the correct password, the credentials are never again shown for that "run of the server". Recovery requires a server recycle. After the server recycle the original set of credentials plus any created from the previous run (when the edit mode was entered with the wrong password) are displayed. -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira