Bugzilla will be upgraded to version 5.0. The upgrade date is tentatively scheduled for 2 December 2018, pending final testing and feedback.
First Last Prev Next    This bug is not in your last search results.
Bug 1150020 - add-user utility doesn't escape names correctly
add-user utility doesn't escape names correctly
Status: VERIFIED
Product: JBoss Enterprise Application Platform 6
Classification: JBoss
Component: Security (Show other bugs)
6.3.1
Unspecified Unspecified
unspecified Severity high
: DR5
: EAP 6.4.0
Assigned To: Darran Lofthouse
Pavel Slavicek
:
Depends On:
Blocks:
  Show dependency treegraph
 
Reported: 2014-10-07 05:26 EDT by Josef Cacek
Modified: 2018-06-07 17:32 EDT (History)
4 users (show)

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
JBoss EAP 6's add user utility iterates the value being used as the key in a properties file and escapes all occurrences of special characters. In previous versions of the product, an error in how the characters were checked caused only the first instance of the 'equals' character (=) to be escaped. If a username contained a subsequent 'equals' character, it was not properly escaped, causing the generated properties file to be unusable. In this release, the special character handling is now corrected to handle all occurrences of the 'equals' character and usernames containing more than one are correctly written to the properties file.
Story Points: ---
Clone Of:
Environment:
Last Closed:
Type: Bug
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)


External Trackers
Tracker ID Priority Status Summary Last Updated
JBoss Issue Tracker WFCORE-163 Major Resolved add-user only escaping first occurrence of special characters 2017-07-20 15:05 EDT

  None (edit)
Description Josef Cacek 2014-10-07 05:26:04 EDT 
When adding a user with name containing equal sign (=), only the first occurrence is escaped.

Reproducer:

./add-user.sh -u 'uid=jduke,ou=Users,dc=jboss,dc=org' -p admin.1234 -r ManagementRealm -g SuperUser

cat ../standalone/configuration/mgmt-users.properties

Actual output:
uid\=jduke,ou=Users,dc=jboss,dc=org=<HASH>

Expected output:
uid\=jduke,ou\=Users,dc\=jboss,dc\=org=<HASH>
Comment 1 JBoss JIRA Server 2014-10-13 10:10:54 EDT 
Darran Lofthouse <darran.lofthouse@jboss.com> updated the status of jira WFCORE-163 to Coding In Progress
Note You need to log in before you can comment on or make changes to this bug.
First Last Prev Next    This bug is not in your last search results.