Jump to content

Recommended Posts

Posted

Hi, I had enabled the password encryption in Jasperserver by setting the encryption.on=true in security.config.properties (I believe, enabling encryption does not need any additional configurations). After that, I observed an issue with the edit user functionality. The scenario is as follows,

Login as superuser > In the Edit user option try to edit a user, add an attribute and save it OR Just click save without modifying anything. > Logout and Login as the user who has been edited.

I could see that the password has been reset to empty string. We can login to the application by keeping the password field as empty. I have observed this is version 5.6.0, 6 and 6.0.1. I have not tested this in earlier versions.

Could some verify whether this is a bug?

  • Replies 0
  • Created
  • Last Reply

Top Posters In This Topic

Popular Days

Top Posters In This Topic

Popular Days

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

×
×
  • Create New...