Project

General

Profile

Bug #13910

Impossible to log in with root admin

Added by François ARMAND over 1 year ago. Updated over 1 year ago.

Status:
Released
Priority:
N/A
Category:
Web - Maintenance
Target version:
Severity:
User visibility:
Effort required:
Priority:
0

Description

Trying to log-in with a configured root admin account like that:

# in /opt/rudder/etc/rudder-webapp.properties
rudder.auth.admin.login=rootadmin
rudder.auth.admin.password=secret

Leads to exception:

[2018-11-27 14:56:14] WARN  org.eclipse.jetty.server.HttpChannel - /rudder-web/j_spring_security_check
java.lang.IllegalArgumentException: There is no PasswordEncoder mapped for the id "null" 
    at org.springframework.security.crypto.password.DelegatingPasswordEncoder$UnmappedIdPasswordEncoder.matches(DelegatingPasswordEncoder.java:238)
    at org.springframework.security.crypto.password.DelegatingPasswordEncoder.matches(DelegatingPasswordEncoder.java:198)
    at org.springframework.security.authentication.dao.DaoAuthenticationProvider.additionalAuthenticationChecks(DaoAuthenticationProvider.java:86)
    at org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider.authenticate(AbstractUserDetailsAuthenticationProvider.java:166)
    at bootstrap.liftweb.RudderProviderManager.authenticate(RudderProviderManager.java:115)
    at org.springframework.security.authentication.ProviderManager.authenticate(ProviderManager.java:199)
    at org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter.attemptAuthentication(UsernamePasswordAuthenticationFilter.java:94)
    at org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter.doFilter(AbstractAuthenticationProcessingFilter.java:212)
    at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334)
    at org.springframework.security.web.header.HeaderWriterFilter.doFilterInternal(HeaderWriterFilter.java:66)
    at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107)
    at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334)

Because spring tries to use an unavailable bcrypt password encoder in place of the "plaintext" one. (yeah, the message is not very explicit).

#1

Updated by François ARMAND over 1 year ago

  • Status changed from In progress to Pending technical review
  • Assignee changed from François ARMAND to Vincent MEMBRÉ
  • Pull Request set to https://github.com/Normation/rudder/pull/2095
#2

Updated by François ARMAND over 1 year ago

  • Status changed from Pending technical review to Pending release
#3

Updated by Vincent MEMBRÉ over 1 year ago

  • Subject changed from Root admin account login throws exception to Impossible to log in with root admin
#4

Updated by Vincent MEMBRÉ over 1 year ago

  • Status changed from Pending release to Released
This bug has been fixed in Rudder 5.0.4 which was released today.
Changelog

Also available in: Atom PDF