sreekanthjnayar Posted April 7, 2015 Posted April 7, 2015 Hi, I had enabled the password encryption in Jasperserver by setting the encryption.on=true in security.config.properties (I believe, enabling encryption does not need any additional configurations). After that, I observed an issue with the edit user functionality. The scenario is as follows,Login as superuser > In the Edit user option try to edit a user, add an attribute and save it OR Just click save without modifying anything. > Logout and Login as the user who has been edited.I could see that the password has been reset to empty string. We can login to the application by keeping the password field as empty. I have observed this is version 5.6.0, 6 and 6.0.1. I have not tested this in earlier versions.Could some verify whether this is a bug?
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now