Uploaded image for project: 'Ibexa IBX'
  1. Ibexa IBX
  2. IBX-1811

A user created with oAuth can login without OAuth

    XMLWordPrintable

Details

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Medium Medium
    • Customer request
    • 3.3.12
    • Content
    • None
    • Yes

    Description

      After first login user with oAuth, and try to log in without oAuth user is redirected to forgot-password/migration

       

      Steps to reproduce

      1. Install IBEXA DXP 3.3
      2. Configure OAuth - https://doc.ibexa.co/en/latest/guide/user_management/oauth/
      3. Log in via oAuth - a user need user/password permission
      4. Try to log in without oAuth

      Result

      A user is redirected to /forgot-password/migration and can change his own password, after this can log in without oAuth

       

      Expected result

      A user created with OAuth should only be able to log in using OAuth

       

      Note

      This redirect is because our provider RepositoryAuthenticationProvider throws a PasswordInUnsupportedFormatException exception, this exception is thrown by PasswordHashService

      Designs

        Attachments

          Activity

            People

              Unassigned Unassigned
              mateusz.debinski@ibexa.co Mateusz Dębiński
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated: