Bug 36428 - SAML provider login dialog shows password in cleartext
SAML provider login dialog shows password in cleartext
Status: CLOSED FIXED
Product: UCS
Classification: Unclassified
Component: SAML
UCS 4.0
Other Linux
: P5 normal (vote)
: UCS 4.0
Assigned To: Erik Damrose
Arvid Requate
: interim-3
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2014-11-04 16:38 CET by Arvid Requate
Modified: 2014-11-26 06:54 CET (History)
2 users (show)

See Also:
What kind of report is it?: ---
What type of bug is this?: ---
Who will be affected by this bug?: ---
How will those affected feel about the bug?: ---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):
Max CVSS v3 score:


Attachments
SAML_provider_login.png (600.68 KB, image/png)
2014-11-04 16:38 CET, Arvid Requate
Details

Note You need to log in before you can comment on or make changes to this bug.
Description Arvid Requate univentionstaff 2014-11-04 16:38:50 CET
Created attachment 6297 [details]
SAML_provider_login.png

The SAML provider login dialog shows password in cleartext, see attachment.
Comment 1 Alexander Kläser univentionstaff 2014-11-04 17:02:50 CET
If the screenshot is of the current version, the service description should be aligned correctly with propert padding to the left, bottom and right.
Comment 2 Erik Damrose univentionstaff 2014-11-04 17:57:42 CET
Fixed in univention-saml 2.0.5-1.29.201411041721
Available in the app center
Comment 3 Arvid Requate univentionstaff 2014-11-04 18:25:33 CET
Ok, looks better.
Comment 4 Stefan Gohmann univentionstaff 2014-11-26 06:54:17 CET
UCS 4.0-0 has been released:
 http://docs.univention.de/release-notes-4.0-0-en.html
 http://docs.univention.de/release-notes-4.0-0-de.html

If this error occurs again, please use "Clone This Bug".