[#4375] - User password stored in plaintext after changing encryption mechanism

Category:
Bug report
Priority:
Normal
Status:
Assigned
Project: Severity:
Major
Resolution:
Open
Component: Reproducibility:
Always
Assigned to:

I've replaced Jasper default encryption mechanism with md5PasswordEncoder. When I login to JasperServer to edit/add user, the password that I've provided was stored in plaintext.

khwong's picture
1
Joined: Aug 26 2009 - 2:10am
Last seen: 8 months 2 weeks ago

2 Comments:

#1

Thanks for reporting the defect.
The defect has been logged in internal tracker.

#2

This is a fairly major issue, any idea on when this is likely to be addressed?

Feedback