You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@directory.apache.org by "Kiran Ayyagari (JIRA)" <ji...@apache.org> on 2016/03/10 12:47:40 UTC
[jira] [Commented] (DIRSERVER-2134) cannot modify password and home if ads-pwdmustchange true

    [ https://issues.apache.org/jira/browse/DIRSERVER-2134?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15189184#comment-15189184 ] 

Kiran Ayyagari commented on DIRSERVER-2134:
-------------------------------------------

Currently when ads-pwdmustchange is set to true then the list of modifications sent should not contain anything other than a password modification.
Try updating the home after changing the password.

> cannot modify password and home if ads-pwdmustchange true
> ---------------------------------------------------------
>
>                 Key: DIRSERVER-2134
>                 URL: https://issues.apache.org/jira/browse/DIRSERVER-2134
>             Project: Directory ApacheDS
>          Issue Type: Bug
>          Components: core
>    Affects Versions: 2.0.0-M21
>         Environment: CentOS 7
>            Reporter: Peter Jamieson
>
> I wrote the following unit test to change password and home directory (contrived from looking at code) and it fails to update: -
> {code}
>     @Test
>     public void testUpdatePasswordAndHome() throws Exception
>     {
>         Dn dnUser1 = new Dn("uid=x135_Y246,ou=users,dc=intervoice,dc=int");
>         Attribute newPassword = new DefaultAttribute("userPassword");
>         newPassword.clear();
>         newPassword.add("five5five%");
>         Modification mod  = new DefaultModification(ModificationOperation.REPLACE_ATTRIBUTE, newPassword);
>         
>         Attribute newHome = new DefaultAttribute("homeDirectory");
>         newHome.clear();
>         newHome.add("/transfer");
>         Modification homeMod  = new DefaultModification(ModificationOperation.REPLACE_ATTRIBUTE, newHome);
>         BindOperationContext bindContext = new BindOperationContext( null );
>         bindContext.setCredentials( DEFAULT_PASSWORD.getBytes() );
>         bindContext.setDn( dnUser1.apply( service.getSchemaManager() ) );
>         bindContext.setInterceptors( service.getInterceptors( OperationEnum.BIND ) );
>         bindContext.addRequestControl(new PasswordPolicyImpl());
>         service.getOperationManager().bind( bindContext );
>         bindContext.getSession().modify(dnUser1, mod, homeMod);
>     }
> {code}
> The following stacktrace happens: -
> {noformat}
> org.apache.directory.api.ldap.model.exception.LdapNoPermissionException: Password should be reset before making any changes to this entry
> 	at org.apache.directory.server.core.authn.AuthenticationInterceptor.checkPwdMustChange(AuthenticationInterceptor.java:1208)
> 	at org.apache.directory.server.core.authn.AuthenticationInterceptor.processPasswordPolicydModify(AuthenticationInterceptor.java:939)
> 	at org.apache.directory.server.core.authn.AuthenticationInterceptor.modify(AuthenticationInterceptor.java:889)
> 	at org.apache.directory.server.core.api.interceptor.BaseInterceptor.next(BaseInterceptor.java:506)
> 	at org.apache.directory.server.core.normalization.NormalizationInterceptor.modify(NormalizationInterceptor.java:216)
> 	at org.apache.directory.server.core.DefaultOperationManager.modify(DefaultOperationManager.java:886)
> 	at org.apache.directory.server.core.shared.DefaultCoreSession.modify(DefaultCoreSession.java:625)
> 	at org.apache.directory.server.core.shared.DefaultCoreSession.modify(DefaultCoreSession.java:590)
> 	at com.intervoice.platform.apacheds.password.test.JunitCracklibPasswordValidator.testUpdatePasswordAndHome(JunitCracklibPasswordValidator.java:154)
> 	at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
> 	at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
> 	at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
> 	at java.lang.reflect.Method.invoke(Method.java:497)
> 	at org.junit.runners.model.FrameworkMethod$1.runReflectiveCall(FrameworkMethod.java:50)
> 	at org.junit.internal.runners.model.ReflectiveCallable.run(ReflectiveCallable.java:12)
> 	at org.junit.runners.model.FrameworkMethod.invokeExplosively(FrameworkMethod.java:47)
> 	at org.junit.internal.runners.statements.InvokeMethod.evaluate(InvokeMethod.java:17)
> 	at org.junit.internal.runners.statements.RunBefores.evaluate(RunBefores.java:26)
> 	at org.junit.internal.runners.statements.RunAfters.evaluate(RunAfters.java:27)
> 	at org.junit.rules.ExpectedException$ExpectedExceptionStatement.evaluate(ExpectedException.java:239)
> 	at org.junit.rules.RunRules.evaluate(RunRules.java:20)
> 	at org.junit.runners.ParentRunner.runLeaf(ParentRunner.java:325)
> 	at org.junit.runners.BlockJUnit4ClassRunner.runChild(BlockJUnit4ClassRunner.java:78)
> 	at org.junit.runners.BlockJUnit4ClassRunner.runChild(BlockJUnit4ClassRunner.java:57)
> 	at org.junit.runners.ParentRunner$3.run(ParentRunner.java:290)
> 	at org.junit.runners.ParentRunner$1.schedule(ParentRunner.java:71)
> 	at org.junit.runners.ParentRunner.runChildren(ParentRunner.java:288)
> 	at org.junit.runners.ParentRunner.access$000(ParentRunner.java:58)
> 	at org.junit.runners.ParentRunner$2.evaluate(ParentRunner.java:268)
> 	at org.junit.internal.runners.statements.RunBefores.evaluate(RunBefores.java:26)
> 	at org.junit.runners.ParentRunner.run(ParentRunner.java:363)
> 	at org.junit.runners.Suite.runChild(Suite.java:128)
> 	at org.junit.runners.Suite.runChild(Suite.java:27)
> 	at org.junit.runners.ParentRunner$3.run(ParentRunner.java:290)
> 	at org.junit.runners.ParentRunner$1.schedule(ParentRunner.java:71)
> 	at org.junit.runners.ParentRunner.runChildren(ParentRunner.java:288)
> 	at org.junit.runners.ParentRunner.access$000(ParentRunner.java:58)
> 	at org.junit.runners.ParentRunner$2.evaluate(ParentRunner.java:268)
> 	at org.junit.internal.runners.statements.RunBefores.evaluate(RunBefores.java:26)
> 	at org.junit.internal.runners.statements.RunAfters.evaluate(RunAfters.java:27)
> 	at org.junit.rules.ExternalResource$1.evaluate(ExternalResource.java:48)
> 	at org.junit.rules.RunRules.evaluate(RunRules.java:20)
> 	at org.junit.runners.ParentRunner.run(ParentRunner.java:363)
> 	at org.eclipse.jdt.internal.junit4.runner.JUnit4TestReference.run(JUnit4TestReference.java:50)
> 	at org.eclipse.jdt.internal.junit.runner.TestExecution.run(TestExecution.java:38)
> 	at org.eclipse.jdt.internal.junit.runner.RemoteTestRunner.runTests(RemoteTestRunner.java:467)
> 	at org.eclipse.jdt.internal.junit.runner.RemoteTestRunner.runTests(RemoteTestRunner.java:683)
> 	at org.eclipse.jdt.internal.junit.runner.RemoteTestRunner.run(RemoteTestRunner.java:390)
> 	at org.eclipse.jdt.internal.junit.runner.RemoteTestRunner.main(RemoteTestRunner.java:197)
> {noformat}



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)