Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-3003

Dont allow blank username and password to be added to system.users

    XMLWordPrintable

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Trivial - P5
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 1.9.1
    • Component/s: Admin
    • Labels:
    • Backwards Compatibility:
      Fully Compatible

      Description

      This could cause some really weird behavior to authenticate without a username in place. Also blank passwords get encrypted which also makes it difficult to detect that the password is blank. I would like to see blank fields in .addUser be rejected outright.

        Attachments

          Issue Links

          is related to

          Improvement - An improvement or enhancement to an existing feature or task. SERVER-3095 Need to specify a minimum password length

          • Minor - P4 - Minor loss of function, or other problem where easy workaround is present.
          • Closed

            Activity

              People

              Assignee:
              eliot Eliot Horowitz (Inactive)
              Reporter:
              jsmestad Justin Smestad
              Participants:
              Votes:
              1 Vote for this issue
              Watchers:
              3 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: