Uploaded image for project: 'OpenOLAT'
  1. OpenOLAT
  2. OO-1543

RS if a LDAP user use the change password REST URL

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed (View Workflow)
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 10.2.5
    • Component/s: None
    • Labels:
      None

      Description

      If the configuration disallow password changes, a LDAP user will get a red screen if it tries the REST URL to change its password.

      2015-05-05 13:09:47,448 [ajp-bio-8021-exec-380] ERROR OLATSecurityException - OLAT::ERROR ^%^ N1-E215 ^%^ org.olat.core.logging 
      Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko 
      
      **RedScreen** chose password to be changed, but disallowed by config
      
      >>> stack of 1.cause::org.olat.core.logging.OLATSecurityException: chose password to be changed, but disallowed by config
      -> at org.olat.ldap.ui.LDAPAuthenticationController.openChangePassword(LDAPAuthenticationController.java:131)
         at org.olat.ldap.ui.LDAPAuthenticationController.activate(LDAPAuthenticationController.java:267)
         at org.olat.login.LoginAuthprovidersController.activate(LoginAuthprovidersController.java:130)
         at org.olat.core.commons.fullWebApp.BaseFullWebappController.activate(BaseFullWebappController.java:1150)
         at org.olat.core.commons.fullWebApp.BaseFullWebappDTabs.activate(BaseFullWebappDTabs.java:46)
         at org.olat.dispatcher.DMZDispatcher.execute(DMZDispatcher.java:267)
         at org.olat.core.servlets.OpenOLATServlet.executeUserRequest(OpenOLATServlet.java:269)
         at org.olat.core.servlets.OpenOLATServlet.doGet(OpenOLATServlet.java:198)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:620)
         at org.olat.core.servlets.OpenOLATServlet.service(OpenOLATServlet.java:155)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:727)
      >>> stack of 2.cause::java.lang.Exception: olat_rtexception_stackgenerator
      -> at org.olat.core.logging.OLATRuntimeException.<init>(OLATRuntimeException.java:57)
         at org.olat.core.logging.OLATRuntimeException.<init>(OLATRuntimeException.java:79)
         at org.olat.core.logging.OLATSecurityException.<init>(OLATSecurityException.java:54)
         at org.olat.ldap.ui.LDAPAuthenticationController.openChangePassword(LDAPAuthenticationController.java:131)
         at org.olat.ldap.ui.LDAPAuthenticationController.activate(LDAPAuthenticationController.java:267)
         at org.olat.login.LoginAuthprovidersController.activate(LoginAuthprovidersController.java:130)
         at org.olat.core.commons.fullWebApp.BaseFullWebappController.activate(BaseFullWebappController.java:1150)
         at org.olat.core.commons.fullWebApp.BaseFullWebappDTabs.activate(BaseFullWebappDTabs.java:46)
         at org.olat.dispatcher.DMZDispatcher.execute(DMZDispatcher.java:267)
         at org.olat.core.servlets.OpenOLATServlet.executeUserRequest(OpenOLATServlet.java:269)
         at org.olat.core.servlets.OpenOLATServlet.doGet(OpenOLATServlet.java:198)
      

        Attachments

          Activity

            People

            Assignee:
            srosse Stéphane Rossé
            Reporter:
            srosse Stéphane Rossé
            Tester:
            Florian Gnägi
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved:

                Time Tracking

                Estimated:
                Original Estimate - Not Specified
                Not Specified
                Remaining:
                Remaining Estimate - 0 minutes
                0m
                Logged:
                Time Spent - 35 minutes
                35m