[Bug 1861215] [NEW] OpenStack dashboard removing trailing spaces
Orestes Leal Rodriguez
1861215 at bugs.launchpad.net
Tue Jan 28 17:58:44 UTC 2020
Public bug reported:
>From the dashboard openstack is removing the trailing spaces from our user's passwords.
We have a modified sql.py backend, that does an ldap bind to an active directory data store. And that works almost always. I say almost because for some users it doesn't work at all. We figure out (and a co-worker also confirmed this) that openstack is removing trailing (also leading?) spaces from the password entered in the dashboard. Also, inside the dashboard trailing spaces are not accepted even when they are equal byte by byte (including the space, I get an error). So this is going on.
Do anybody knows where is this removal performed? (python script
location, line) So I can remove that since I have users (me included, I
have the issue since the very beginning of this deployment) that cannot
login. And they can use their Active Directrory passwords from other
apps without problem.
We are running 'stein' with the latest update for ubuntu 18.04-AMD64.
NOTE: Since passwords can indeed contain spaces anywhere I consider this a bug.
** Affects: horizon (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
OpenStack, which is subscribed to horizon in Ubuntu.
https://bugs.launchpad.net/bugs/1861215
Title:
OpenStack dashboard removing trailing spaces
Status in horizon package in Ubuntu:
New
Bug description:
From the dashboard openstack is removing the trailing spaces from our user's passwords.
We have a modified sql.py backend, that does an ldap bind to an active directory data store. And that works almost always. I say almost because for some users it doesn't work at all. We figure out (and a co-worker also confirmed this) that openstack is removing trailing (also leading?) spaces from the password entered in the dashboard. Also, inside the dashboard trailing spaces are not accepted even when they are equal byte by byte (including the space, I get an error). So this is going on.
Do anybody knows where is this removal performed? (python script
location, line) So I can remove that since I have users (me included,
I have the issue since the very beginning of this deployment) that
cannot login. And they can use their Active Directrory passwords from
other apps without problem.
We are running 'stein' with the latest update for ubuntu 18.04-AMD64.
NOTE: Since passwords can indeed contain spaces anywhere I consider this a bug.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/horizon/+bug/1861215/+subscriptions
More information about the Ubuntu-openstack-bugs
mailing list