Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix(jans-scim): SCIM not responding to applied Password validation #8146

Closed
mzico opened this issue Mar 25, 2024 · 1 comment · Fixed by #8716
Closed

fix(jans-scim): SCIM not responding to applied Password validation #8146

mzico opened this issue Mar 25, 2024 · 1 comment · Fixed by #8716
Assignees
@jgomer2001 @moabu
Labels
area-CI Issue or changes required in automatic builds or CI infrastructure comp-jans-scim Component affected by issue or PR kind-bug Issue or PR is a bug in existing functionality

Comments

@mzico
Copy link
Contributor

mzico commented Mar 25, 2024

We have enabled custom validation for Password attribute. Which is:

  • Flex: 5.1.0 in Ubuntu 22 with Postgresql backend.
  • Regular expression: ^(?=.*[0-9])(?=.*[a-z])(?=.*[A-Z])(?=.*[!@#&()–[{}]:;',?/*~$^+=<>]).{8,20}$
  • Minimum Length: 6, Maximum Length: 12
  • Admin-UI and jans TUI are respecting this validation and prohibiting users to create simple password.
  • But, I can easily replace existing user's strong password to simple one like 1234 even when password validation is in place of configuration.

Screenshot from 2024-03-26 01-38-27
@mo-auto mo-auto added area-CI Issue or changes required in automatic builds or CI infrastructure comp-jans-scim Component affected by issue or PR kind-bug Issue or PR is a bug in existing functionality labels Mar 25, 2024
jgomer2001 added a commit that referenced this issue Jun 14, 2024
@jgomer2001
docs: include new config property #8146
552f7c4 
Signed-off-by: jgomer2001 <bonustrack310@gmail.com>
jgomer2001 added a commit that referenced this issue Jun 14, 2024
@jgomer2001
feat: apply password validation when defined and enabled #8146
7d5f85b 
Signed-off-by: jgomer2001 <bonustrack310@gmail.com>
@jgomer2001 jgomer2001 mentioned this issue Jun 14, 2024
Merged
5 tasks
jgomer2001 added a commit that referenced this issue Jun 14, 2024
@jgomer2001
chore: add new property to installation template #8146
acf5b38 
Signed-off-by: jgomer2001 <bonustrack310@gmail.com>
yurem pushed a commit that referenced this issue Jun 17, 2024
@jgomer2001
feat: apply password validation (#8716)
232a6eb 
* docs: include new config property #8146

Signed-off-by: jgomer2001 <bonustrack310@gmail.com>

* feat: apply password validation when defined and enabled #8146

Signed-off-by: jgomer2001 <bonustrack310@gmail.com>

* chore: add new property to installation template #8146

Signed-off-by: jgomer2001 <bonustrack310@gmail.com>

---------

Signed-off-by: jgomer2001 <bonustrack310@gmail.com>
@jgomer2001
Copy link
Contributor

@mzico a new property was added to scim configuration to turn off validation if desired

Screenshot from 2024-06-17 06-40-48

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@jgomer2001 jgomer2001

@moabu moabu

Labels
area-CI Issue or changes required in automatic builds or CI infrastructure comp-jans-scim Component affected by issue or PR kind-bug Issue or PR is a bug in existing functionality
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

feat: apply password validation JanssenProject/jans
4 participants
@jgomer2001 @mzico @moabu @mo-auto