When using Clearspace, changing password via OF returns a Success Message, but password isn't changed.

Description

In an Clearspace-integrated instance, change of password returns a Success message, but password isn't changed. Maybe this option should be disabled (only CS might manage password).

Environment

CS 2.1 - OF 3.6

Activity

Show:
Armando Jagucki
July 3, 2008, 1:44 AM

We now show an error message when changing the password if the operation is unsupported by the AuthProvider (as in the case outlined in the Test Entry steps).

Armando Jagucki
July 2, 2008, 6:50 AM

The ClearspaceAuthProvider throws an UOE:

2008.07.01 22:50:49 [org.jivesoftware.openfire.user.User.setPassword(User.java:177)]
java.lang.UnsupportedOperationException: Change Password not supported
at org.jivesoftware.openfire.clearspace.ClearspaceAuthProvider.setPassword(ClearspaceAuthProvider.java:104)
at org.jivesoftware.openfire.user.User.setPassword(User.java:168)
at org.jivesoftware.openfire.admin.user_002dpassword_jsp._jspService(user_002dpassword_jsp.java:91)
at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:97)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
at org.mortbay.jetty.servlet.ServletHolder.handle(ServletHolder.java:487)
at org.mortbay.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1093)
at com.opensymphony.module.sitemesh.filter.PageFilter.parsePage(PageFilter.java:118)

For now we will probably show an error message explaining that with CS integration enabled – authentication is handled by CS.

However, Daniel suggests we should send the password change request to CS, and if CS supports password auth (as opposed to some other auth mechanism) determine success/fail based on CS' resolution.

Fixed

Assignee

Armando Jagucki

Reporter

Pablo Pablo