Project

General

Profile

Bug #55381

mgr/dashboard: trailing space causes invalid login to dashboard

Added by Ellen Kusasira over 1 year ago. Updated over 1 year ago.

Status:
Triaged
Priority:
Normal
Assignee:
Ellen Kusasira
Category:
Security & Auth
Target version:
-
% Done:

0%

Source:
Community (user)
Tags:
Backport:
Regression:
No
Severity:
3 - minor
Reviewed:
Affected Versions:
ceph-qa-suite:
Pull request ID:
Crash signature (v1):
Crash signature (v2):

Description

Description of problem

While trying to login into the dashboard with credentials, any trailing space in the username causes an error of invalid logins. Doesn't this propagate into the deployed version. Isn't it better to mitigate this because normally logins cater for trailing commas.

local development

How reproducible
Run ceph dashboard on local development and login with username 'admin ' (take note of the trailing space), add 'admin' as password too and login

h3. Expected results

Expected the system to ignore the trailing space

History

#1 Updated by Ernesto Puerta over 1 year ago

  • Category set to Security & Auth

#2 Updated by Ernesto Puerta over 1 year ago

  • Source set to Community (user)

#3 Updated by Ellen Kusasira over 1 year ago

Hey Ernesto I'll be working on this issue. I can't assign issues to myself

#4 Updated by Nizamudeen A over 1 year ago

  • Status changed from New to Triaged
  • Assignee set to Ellen Kusasira

Also available in: Atom PDF