[Vtigercrm-commits] [vtiger development] #7454: Special character (ampersand "&") in password locks user out
vtiger development
vtiger-tickets at trac.vtiger.com
Mon Jun 25 00:41:48 PDT 2012
#7454: Special character (ampersand "&") in password locks user out
------------------------+---------------------------------------------------
Reporter: rolf | Owner: developer
Type: defect | Status: new
Priority: unassigned | Milestone: Unassigned
Component: vtigercrm | Version: 5.3.0
Severity: Medium | Keywords: passwords ampersand
------------------------+---------------------------------------------------
When a user password contains and ampersand ("&") the user can not log in.
The vtiger change password feature accepts the password with the ampersand
but subsequently the user can no longer log in.
This behavior has been confirmed both with native database based
authentication as well as with LDAP authentication.
The issue creates seemingly random behavior allowing some users in and
others not which has been very hard to narrow down.
This bug is seems related to issue #6985 which talks about the same
behavior with characters "<" and ">" which has been marked critical and is
still open.
In our situation we use LDAP and can not adjust password guidelines to
work around vtiger password limitations so a fix would be most
appreciated.
--
Ticket URL: <http://trac.vtiger.com/cgi-bin/trac.cgi/ticket/7454>
vtiger development <http://trac.vtiger.com/>
vtiger CRM
More information about the vtigercrm-commits
mailing list