[#4375] - User password stored in plaintext after changing encryption mechanism

Posted by khwong on October 26, 2009 - 12:47am
Category:
Bug report
 Priority:
Normal
 Status:
Assigned
Project:
JasperReports® Server
 Severity:
Major
 Resolution:
Open
Component: Reproducibility:
Always
 Assigned to:
swood
Subscribe

I've replaced Jasper default encryption mechanism with md5PasswordEncoder. When I login to JasperServer to edit/add user, the password that I've provided was stored in plaintext.

khwong's picture
khwong
1
Joined: Aug 26 2009 - 2:10am
Last seen: 3 months 22 hours ago

2 Comments:

#1Posted by julias on September 7, 2011 - 2:06pm

Thanks for reporting the defect.
The defect has been logged in internal tracker.

#2Posted by darylhurst on November 25, 2011 - 12:21pm

This is a fairly major issue, any idea on when this is likely to be addressed?

Feedback
randomness