[Koha-bugs] [Bug 31971] New: SIP server rejects passwords ending in non-alphanumeric characters
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Tue Oct 25 14:19:00 CEST 2022
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=31971
Bug ID: 31971
Summary: SIP server rejects passwords ending in
non-alphanumeric characters
Change sponsored?: ---
Product: Koha
Version: master
Hardware: All
OS: All
Status: NEW
Severity: normal
Priority: P5 - low
Component: SIP2
Assignee: koha-bugs at lists.koha-community.org
Reporter: nick at bywatersolutions.com
QA Contact: testopia at bugs.koha-community.org
To recreate:
1 - Set a patron's password to secret*
2 - Attempt a patron information request via the sip clip emulator:
perl misc/sip_cli_emulator.pl -su term1 -sp term1 -l CPL -a localhost -p
6001 -m patron_information --patron ballard --password secret*
3 - It fails?
4 - Set password to secret*s
5 - Repeat
perl misc/sip_cli_emulator.pl -su term1 -sp term1 -l CPL -a localhost -p
6001 -m patron_information --patron ballard --password secret*s
6 - It succeeeds
Offending line(s) appears to be:
366 $buffer =~ s/^\s*[^A-z0-9]+//s;
367 # Every line must start with a "real" character. Not whitespace, control
chars, etc.
368 $buffer =~ s/[^A-z0-9]+$//s;
369
370 # Same for the end. Note this catches the problem some clients have
sending empty fields at the end, like |||
--
You are receiving this mail because:
You are watching all bug changes.
You are the assignee for the bug.
More information about the Koha-bugs
mailing list