Hi Ron,
Thank you for your reply, I have created two issues in the issue tracker.
I found your names in the module owner list here:
http://wiki.java.net/bin/view/Projects/GlassFishModuleOwners
It seems these modules are GFv2 based. Could you tell me where I can
find an up to date list that mentions who is in charge of the security
and admin modules now?
Thanks,
Dies
Ron Monzillo wrote:
> Dies Koper wrote:
>> Hi Shing Wai, Ron,
>>
>> I believe you are the owner of the modules the questions I posed last
>> week relate to.
>> I have another related question and was hoping you could help me.
>>
>> 3.
>> I confirmed that I can use multibyte characters in a password (tried
>> with asadmin change-master-password). Why do you allow non-ASCII
>> characters for the password but not for the user name?
>>
> Dies,
>
> This appears to be an over-sight or limitation of the implementation.
>
> The module owner for security has changed, and at least the first 2
> issues you raised also involve the admin module. I believe the right
> people are looking into this.
>
> If you have not done so already, please create an issue as that will
> ensure that it gets assigned and addressed.
>
> Ron
>
>> Thanks!
>> Dies
>>
>>
>> Dies Koper wrote:
>>
>>> Hi,
>>>
>>> We are trying to determine what characters GlassFish supports for use as
>>> in User IDs and passwords in File realm. The characters accepted when
>>> using asadmin are different from when using the Admin console.
>>> I have a few questions.
>>>
>>> 1.
>>> The Admin Console has the following comment:
>>> Name of a user to be granted access to this realm; name can be up to
>>> 255 characters, must contain only alphanumeric, underscore, dash, or dot
>>> characters
>>>
>>> It is my understanding that "alphanumeric" does not include multibyte
>>> (Japanese) characters. However, if I include other symbols ('+', etc.)
>>> I get an error message while if I include Japanese characters
>>> (multibyte), they are accepted.
>>> Are multibyte characters supported here or not?
>>>
>>> 2.
>>> Using the asadmin change-admin-password command you cannot change a
>>> password from or to something less than 8 characters. Using the Admin
>>> Console (Security>Realms>admin-realm) you /can/ change the password to
>>> something less than 8 characters (and therefore make it impossible to
>>> change afterwards with the asadmin command).
>>> Wouldn't it be better to have the limitation be enforced consistently
>>> (or not at all)?
>>>
>>> Thanks,
>>> Dies