Uploaded image for project: 'Apache Knox'
  1. Apache Knox
  2. KNOX-2934

Should not return passcode token when token management is disabled

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Major
    • Resolution: Duplicate
    • 2.0.0, 1.6.0, 1.6.1
    • 2.1.0
    • TokenGenerationUI
    • None

    Description

      Currently, the token generation app (in fact, our own KNOXTOKEN service), returns the passcode token in the result JSON even if token management is disabled. This is wrong:
      without token management, the passcode token will not be persisted -> it cannot be used for authentication.

      Attachments

        Issue Links

          duplicates

          Improvement - An improvement or enhancement to an existing feature or task. KNOX-2734 Exclude token passcode from KnoxToken responses when server-managed state is disabled.

          • Major - Major loss of function.
          • Resolved

          Activity

            People

              smolnar Sandor Molnar
              smolnar Sandor Molnar
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: