[jira] [Commented] (SYNCOPE-136) Password required for resource subscription

Mon, 13 Aug 2012 07:18:39 -0700 

    [ 
https://issues.apache.org/jira/browse/SYNCOPE-136?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13433159#comment-13433159
 ] 

Colm O hEigeartaigh commented on SYNCOPE-136:
---------------------------------------------


This issue has also manifested itself for the following scenario:

" I think there may be a bug here in that this is working fine when you add a 
resource by editing the user template before the task executes for the first 
time, but if you later add it in after the user has already been synchronized 
to Syncope and run the task again, the resource does not show up on the 
previously synchronized user. "

Root cause:

org.apache.syncope.client.validation.SyncopeClientCompositeErrorException: 
{[RequiredValuesMissing [password cannot be empty when subscribing to new 
resources]], }
        at 
org.apache.syncope.core.rest.data.UserDataBinder.update(UserDataBinder.java:218)

Colm.
                
> Password required for resource subscription
> -------------------------------------------
>
>                 Key: SYNCOPE-136
>                 URL: https://issues.apache.org/jira/browse/SYNCOPE-136
>             Project: Syncope
>          Issue Type: Improvement
>            Reporter: Francesco Chicchiriccò
>             Fix For: 1.2.0
>
>
> Currently, cleartext password is always required when subscribing to a new 
> external resource.
> However, in some cases (for example when passwords are stored with some 
> symmetric algorithm) this can be avoided.
> For example, it could be:
> Case 1: 2-way (a.k.a. symmetric) password cipher algorithm is configured in 
> Syncope
> Use decrypted password from SyncopeUser to subscribe new resource.
> Case 2: 1-way (a.k.a. hash or asymmetric) password cipher algorithm is 
> configured in Syncope and no clear-text password is available (for example, 
> passed via UserMod or provided by a synchronizing resource)
> Provide, on a resource-basis, a mean to configure how new password should be 
> generated:
>  * constant
>  * random password generation (compliant with resource password policy, if 
> present - see SYNCOPE-121)
>  * provide custom Java class
> Discussion thread: 
> http://syncope-dev.1063484.n5.nabble.com/new-password-issue-td5589622.html

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: 
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

Reply via email to