781336 – rhn-register GUI won't check for invalid login/password combination

Bug 781336 - rhn-register GUI won't check for invalid login/password combination

Summary: rhn-register GUI won't check for invalid login/password combination

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Red Hat Enterprise Linux 5
Classification:	Red Hat
Component:	rhn-client-tools
Sub Component:
Version:	5.8
Hardware:	Unspecified
OS:	Unspecified
Priority:	high
Severity:	medium
Target Milestone:	rc
Target Release:	---
Assignee:	Stephen Herr
QA Contact:	Martin Korbel
Docs Contact:
URL:
Whiteboard:
Duplicates (1):	783987 (view as bug list)
Depends On:	771167
Blocks:	807971
TreeView+	depends on / blocked

Reported:	2012-01-13 10:51 UTC by Lukas Pramuk
Modified:	2013-01-08 07:45 UTC (History)
CC List:	7 users (show)
Fixed In Version:	rhn-client-tools-0.4.20-78.el5
Doc Type:	Bug Fix
Doc Text:
Clone Of:	771167
Environment:
Last Closed:	2013-01-08 07:45:07 UTC
Target Upstream Version:
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHBA-2013:0104	0	normal	SHIPPED_LIVE	rhn-client-tools bug fix and enhancement update	2013-01-07 15:26:13 UTC

Comment 5 RHEL Program Management 2012-04-02 10:45:53 UTC

This request was evaluated by Red Hat Product Management for inclusion
in a Red Hat Enterprise Linux release.  Product Management has
requested further review of this request by Red Hat Engineering, for
potential inclusion in a Red Hat Enterprise Linux release for currently
deployed products.  This request is not yet committed for inclusion in
a release.

Comment 8 Jan Pazdziora 2012-07-13 14:50:38 UTC

A patch like this could be the least invasive. The reserveUser no longer validates login and password against hosted, while getPossibleOrgs does.

===================================================================
--- src/up2date_client/rhnregGui.py	(revision 208757)
+++ src/up2date_client/rhnregGui.py	(working copy)
@@ -525,6 +525,8 @@
             self.alreadyRegistered = 1
             self.alreadyRegistered = rhnreg.reserveUser(self.loginUname.get_text(),
                                                         self.loginPw.get_text())
+            rhnreg.getPossibleOrgs(self.loginUname.get_text(),
+                                                        self.loginPw.get_text())
         except up2dateErrors.ValidationError, e:
             setArrowCursor()
             self.alreadyRegistered = 0

Comment 10 Stephen Herr 2012-07-13 20:09:28 UTC

*** Bug 783987 has been marked as a duplicate of this bug. ***

Comment 11 Stephen Herr 2012-07-13 20:11:03 UTC

Note that for completeness's sake when we test this we should also test firstboot like in bug 783987

Comment 16 errata-xmlrpc 2013-01-08 07:45:07 UTC

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

http://rhn.redhat.com/errata/RHBA-2013-0104.html

Note You need to log in before you can comment on or make changes to this bug.