Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

‘Forgotton password’ procedure does not work when the mail attribute, used as username, contains a '.' and a '+' in the local part #659

Open
GoogleCodeExporter opened this issue Jul 19, 2015 · 0 comments
Open

‘Forgotton password’ procedure does not work when the mail attribute, used as username, contains a '.' and a '+' in the local part #659

GoogleCodeExporter opened this issue Jul 19, 2015 · 0 comments
Labels
auto-migrated Priority-Medium Type-Help

Comments

@GoogleCodeExporter
Copy link 

What steps will reproduce the problem?

1. PWM configuration: Set LDAP naming attribute to 'mail' and Username Search 
filter to '(mail=%USERNAME%)
2. Click 'Forgotten password' and enter a mail address with a '.' and a '+' in 
the local part of the email address.

- observed behaviour: PWM does not do a directory search, but returns 
immediately with 5006 ERROR_RESPONSES_NORESPONSES 
PWM log:
2015-03-11 14:55:07, TRACE, pwm.SessionFilter, {mq} POST request for: 
/pwm/public/ForgottenPassword  [193.191.148.1/visitors.ibbt.be]
  mail='[email protected]'
  pwmFormID='xyuks1v7FKehKIYuyRNRmj0Af5u1QQRR14c091db733i5q5dj'
  processAction='search'
2015-03-11 14:55:09, DEBUG, servlet.ForgottenPasswordServlet, {mq} 5006 
ERROR_RESPONSES_NORESPONSES fields: [Email Address] 

PWM does not even attempt to contact the LDAP server.


- expected behaviour : PWM searches user in LDAP directory (demonstrated below 
by replacing the ‘.’ with an ‘_’.
2015-03-11 16:02:00, TRACE, pwm.SessionFilter, {mt} POST request for: 
/pwm/public/ForgottenPassword  [193.191.148.1/visitors.ibbt.be]
  mail='[email protected]'
  pwmFormID='aMMqDEdY6O40ZSIS3PMnwEosKU4EIAsL14c09583e10u6hhrd'
  processAction='search'
2015-03-11 16:02:00, DEBUG, operations.UserSearchEngine, {mt} beginning user 
search process [193.191.148.1/visitors.ibbt.be]
2015-03-11 16:02:00, DEBUG, operations.UserSearchEngine, {mt} performing ldap 
search for user, base=ou=apps,ou=users,dc=qas,dc=viaa,dc=be 
filter=SearchHelper: filter: 
(&(objectClass=person)([email protected])), scope: SUBTREE, 
attributes: [] [193.191.148.1/visitors.ibbt.be]
2015-03-11 16:02:00, TRACE, provider.WireTraceWrapper, begin id=199,op#73 
method search(ou=apps,ou=users,dc=qas,dc=viaa,dc=be,SearchHelper: filter: 
(&(objectClass=person)([email protected])), scope: SUBTREE, 
attributes: [])
2015-03-11 16:02:00, TRACE, provider.WireTraceWrapper, begin id=229,op#2 method 
search(ou=apps,ou=users,dc=qas,dc=viaa,dc=be,SearchHelper: filter: 
(&(objectClass=person)([email protected])), scope: SUBTREE, 
attributes: [])
2015-03-11 16:02:00, TRACE, provider.WireTraceWrapper, finish id=229,op#2 
result: {} (5ms)
2015-03-11 16:02:00, TRACE, provider.WireTraceWrapper, finish id=199,op#73 
result: {} (6ms)
2015-03-11 16:02:00, TRACE, operations.UserSearchEngine, {mt} user not found in 
context ou=apps,ou=users,dc=qas,dc=viaa,dc=be [193.191.148.1/visitors.ibbt.be]


What version of PWM are you using?
1.7.1

What ldap directory and version are you using?
openLDAP 2.4.31

Original issue reported on code.google.com by [email protected] on 11 Mar 2015 at 3:06
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
auto-migrated Priority-Medium Type-Help
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@GoogleCodeExporter