-
Bug
-
Resolution: Unresolved
-
Minor
-
None
A user is being allowed to create with invalid password credentials (<14 characters in length) when created via !https://github.com/fluidicon.png!jenkins/core/src/main/java/hudson/security/HudsonPrivateSecurityRealm.java at b8e5141a9e69318d908982eaecdfea798010f954 · jenkinsci/jenkins (IN FIPS MODE)
Expected Results.
Ensure that user with invalid credentials is not allowed to be created in FIPS mode.
- is related to
-
JENKINS-74858 Missing password length validation for users in jenkins own database (In FIPS mode)
-
- Resolved
-
[JENKINS-74918] Missing a potential FIPS validation
Description | Original: A user is being allowed to create with invalid password credentials (<14 characters in length) when created via [!https://github.com/fluidicon.png!jenkins/core/src/main/java/hudson/security/HudsonPrivateSecurityRealm.java at b8e5141a9e69318d908982eaecdfea798010f954 · jenkinsci/jenkins|https://github.com/jenkinsci/jenkins/blob/b8e5141a9e69318d908982eaecdfea798010f954/core/src/main/java/hudson/security/HudsonPrivateSecurityRealm.java#L534] *(IN FIPS MODE)* |
New:
A user is being allowed to create with invalid password credentials (<14 characters in length) when created via [!https://github.com/fluidicon.png!jenkins/core/src/main/java/hudson/security/HudsonPrivateSecurityRealm.java at b8e5141a9e69318d908982eaecdfea798010f954 · jenkinsci/jenkins|https://github.com/jenkinsci/jenkins/blob/b8e5141a9e69318d908982eaecdfea798010f954/core/src/main/java/hudson/security/HudsonPrivateSecurityRealm.java#L534] *(IN FIPS MODE)*
*Expected Results.* ** Ensure that user with invalid credentials is not allowed to be created in FIPS mode. |
Description |
Original:
A user is being allowed to create with invalid password credentials (<14 characters in length) when created via [!https://github.com/fluidicon.png!jenkins/core/src/main/java/hudson/security/HudsonPrivateSecurityRealm.java at b8e5141a9e69318d908982eaecdfea798010f954 · jenkinsci/jenkins|https://github.com/jenkinsci/jenkins/blob/b8e5141a9e69318d908982eaecdfea798010f954/core/src/main/java/hudson/security/HudsonPrivateSecurityRealm.java#L534] *(IN FIPS MODE)*
*Expected Results.* ** Ensure that user with invalid credentials is not allowed to be created in FIPS mode. |
New:
A user is being allowed to create with invalid password credentials (<14 characters in length) when created via [!https://github.com/fluidicon.png!jenkins/core/src/main/java/hudson/security/HudsonPrivateSecurityRealm.java at b8e5141a9e69318d908982eaecdfea798010f954 · jenkinsci/jenkins|https://github.com/jenkinsci/jenkins/blob/b8e5141a9e69318d908982eaecdfea798010f954/core/src/main/java/hudson/security/HudsonPrivateSecurityRealm.java#L534] *(IN FIPS MODE)*
*Expected Results.* Ensure that user with invalid credentials is not allowed to be created in FIPS mode. |
Link |
New:
This issue is related to |