dogtagpki

Clone
Source Code
GIT

#1636 Smartcard token enroll/format fails when the ldap user has special characters in userid or password
Closed: Fixed None Opened 8 years ago by rpattath.

Closed: Fixed
Reopen Issue

Smartcard token enroll/format fails when the ldap user has special characters
in userid or password

Steps to Reproduce:

1. Create an ldap user with password iWhAZj\$9z\!Y6~
2. Enroll/format a smartcard using this user

Actual results:

Enroll/format fails during authentication

Expected results:

Enroll/format should be successful

Additional info:

TPS log messages

[30/Sep/2015:16:24:39][http-bio-32000-exec-12]: TPSSession.process: Exception
reading from the client: java.net.SocketTimeoutException: Read timed out
[30/Sep/2015:16:24:39][http-bio-32000-exec-12]:
TPSProcessor.requestExtendedLogin failed ReadMsg:
java.net.SocketTimeoutException: Read timed out
[30/Sep/2015:16:24:39][http-bio-32000-exec-12]:
TPSProcessor.checkAndAuthenticateUser:: authentication exception thrown:
java.net.SocketTimeoutException: Read timed out
[30/Sep/2015:16:24:39][http-bio-32000-exec-12]: LDAPDatabase:
addRecord("20150930162439906000.65")
[30/Sep/2015:16:24:39][http-bio-32000-exec-12]: In
LdapBoundConnFactory::getConn()
[30/Sep/2015:16:24:39][http-bio-32000-exec-12]: masterConn is connected: true
[30/Sep/2015:16:24:39][http-bio-32000-exec-12]: getConn: conn is connected true
[30/Sep/2015:16:24:39][http-bio-32000-exec-12]: getConn: mNumConns now 2
[30/Sep/2015:16:24:39][http-bio-32000-exec-12]: LDAPDatabase: adding
cn=20150930162439906000.65,ou=Activities,dc=pki-tps
[30/Sep/2015:16:24:39][http-bio-32000-exec-12]: returnConn: mNumConns now 3
[30/Sep/2015:16:24:39][http-bio-32000-exec-12]: TPSSession.process: Message
processing failed: TPS error user authentication
failed:java.net.SocketTimeoutException: Read timed out
[30/Sep/2015:16:24:39][http-bio-32000-exec-12]: TPSMessage.write: Writing:
s=43&msg_type=13&operation=1&result=1&message=14
[30/Sep/2015:16:24:39][http-bio-32000-exec-12]: TPSSession.process: leaving:
result: 1 status: STATUS_ERROR_LOGIN
[30/Sep/2015:16:24:39][http-bio-32000-exec-12]: After session.process() exiting
...

Per CS/DS Meeting of 10/12/2015 - 10.3

commit 072a8760b2530f3079aead92791553b2120d42b5
Author: Jack Magne jmagne@dhcp-16-206.sjc.redhat.com
Date: Wed Apr 27 13:52:10 2016 -0700

TPS auth special characters fix.

Ticket #1636.
Smartcard token enroll/format fails when the ldap user has special characters in userid or password

Tested with both esc and tpsclient. The problem was when using a real card because the client uri encodes
the authentication creds and the server needs to decode them.

Closing:

Metadata Update from @rpattath:
- Issue assigned to jmagne
- Issue set to the milestone: 10.3.1
7 years ago

Dogtag PKI is moving from Pagure issues to GitHub issues. This means that existing or new
issues will be reported and tracked through Dogtag PKI's GitHub Issue tracker.

This issue has been cloned to GitHub and is available here:
https://github.com/dogtagpki/pki/issues/2195

If you want to receive further updates on the issue, please navigate to the
GitHub issue and click on Subscribe button.

Thank you for understanding, and we apologize for any inconvenience.

Login to comment on this ticket.

Metadata
None
None
None
major
None
None
defect
None
None
None
None
None
QE
None
None
None
None
None
None
TPS
None
Powered by Pagure 5.13.3
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.