You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@syncope.apache.org by "Francesco Chicchiriccò (JIRA)" <ji...@apache.org> on 2016/02/16 10:46:18 UTC

[jira] [Resolved] (SYNCOPE-767) Password Policy: mustn't contain value of the following attributes case insensitive

     [ https://issues.apache.org/jira/browse/SYNCOPE-767?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Francesco Chicchiriccò resolved SYNCOPE-767.
--------------------------------------------
    Resolution: Fixed

Similar fix also applied to account policy enforcement

> Password Policy: mustn't contain value of the following attributes case insensitive
> -----------------------------------------------------------------------------------
>
>                 Key: SYNCOPE-767
>                 URL: https://issues.apache.org/jira/browse/SYNCOPE-767
>             Project: Syncope
>          Issue Type: Improvement
>          Components: core
>    Affects Versions: 1.1.3
>            Reporter: Nicola Baiocco
>            Assignee: Francesco Chicchiriccò
>             Fix For: 1.1.9, 1.2.8, 2.0.0
>
>
> Improvement of class  org.apache.syncope.core.policy.PasswordPolicyEnforcer
> Instead of 
> {code:java}
> if (password.contains(word)) {
>                 throw new PasswordPolicyException("Used word(s) not permitted");
> }
> {code}
> use
> {code:java}
> if (StringUtils.containsIgnoreCase(password, word)) {
> ...
> }
> {code}



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)