mirror of https://github.com/OpenIdentityPlatform/OpenDJ.git
parent: d5ba7588 | patch | commit | ignore whitespace
neil_a_wilson
20.53.2006 f4b95d199811deb1d3a5e2f50f2ce82ce48bfed8 
Update the password modify extended operation to fix a problem in which changes
made over an unauthenticated connection with an authorization ID and password
were not properly detected as a self change.

OpenDS Issue Number:  682
1 files modified
5 ■■■■■ changed files
opendj-sdk/opends/src/server/org/opends/server/extensions/PasswordModifyExtendedOperation.java 5 ●●●●● patch | view | raw | blame | history 
 opendj-sdk/opends/src/server/org/opends/server/extensions/PasswordModifyExtendedOperation.java


@@ -460,7 +460,7 @@




      // Determine whether the user is changing his own password or if it's an


      // administrative reset.


      boolean selfChange = ((userIdentity == null) ||


      boolean selfChange = ((userIdentity == null) || (requestorDN == null) ||


                            userDN.equals(requestorDN));






@@ -943,7 +943,8 @@


      // password" flag in the client connection.  Note that we're using the


      // authentication DN rather than the authorization DN in this case to


      // avoid mistakenly clearing the flag for the wrong user.


      if (selfChange && (authInfo.getAuthenticationDN().equals(userDN)))


      if (selfChange && (authInfo.getAuthenticationDN() != null) &&


          (authInfo.getAuthenticationDN().equals(userDN)))


      {


        operation.getClientConnection().setMustChangePassword(false);


      }