Dies Koper wrote:
> Hi Shing Wai, Ron,
>
> I believe you are the owner of the modules the questions I posed last
> week relate to.
> I have another related question and was hoping you could help me.
>
> 3.
> I confirmed that I can use multibyte characters in a password (tried
> with asadmin change-master-password). Why do you allow non-ASCII
> characters for the password but not for the user name?
>
Dies,
This appears to be an over-sight or limitation of the implementation.
The module owner for security has changed, and at least the first 2
issues you raised also involve the admin module. I believe the right
people are looking into this.
If you have not done so already, please create an issue as that will
ensure that it gets assigned and addressed.
Ron
> Thanks!
> Dies
>
>
> Dies Koper wrote:
>
>> Hi,
>>
>> We are trying to determine what characters GlassFish supports for use as
>> in User IDs and passwords in File realm. The characters accepted when
>> using asadmin are different from when using the Admin console.
>> I have a few questions.
>>
>> 1.
>> The Admin Console has the following comment:
>> Name of a user to be granted access to this realm; name can be up to
>> 255 characters, must contain only alphanumeric, underscore, dash, or dot
>> characters
>>
>> It is my understanding that "alphanumeric" does not include multibyte
>> (Japanese) characters. However, if I include other symbols ('+', etc.)
>> I get an error message while if I include Japanese characters
>> (multibyte), they are accepted.
>> Are multibyte characters supported here or not?
>>
>> 2.
>> Using the asadmin change-admin-password command you cannot change a
>> password from or to something less than 8 characters. Using the Admin
>> Console (Security>Realms>admin-realm) you /can/ change the password to
>> something less than 8 characters (and therefore make it impossible to
>> change afterwards with the asadmin command).
>> Wouldn't it be better to have the limitation be enforced consistently
>> (or not at all)?
>>
>> Thanks,
>> Dies
>
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: dev-unsubscribe_at_glassfish.dev.java.net
> For additional commands, e-mail: dev-help_at_glassfish.dev.java.net
>