You are viewing a plain text version of this content. The canonical link for it is here.

Posted to notifications@couchdb.apache.org by "dario cescon (JIRA)" <ji...@apache.org> on 2017/04/26 12:27:04 UTC

[jira] [Created] (COUCHDB-3397) Unauthorized access due to password toLowerCase

dario cescon created COUCHDB-3397:
-------------------------------------

             Summary: Unauthorized access due to password toLowerCase
                 Key: COUCHDB-3397
                 URL: https://issues.apache.org/jira/browse/COUCHDB-3397
             Project: CouchDB
          Issue Type: Bug
          Components: Replication
            Reporter: dario cescon


The replicator function in local installation send (in POST) lowercase password.

If the remote admin password is composed by mix of lowercase and uppercase characters, the password sent cause the unauthorized access to the DB.



--
This message was sent by Atlassian JIRA
(v6.3.15#6346)