Uploaded image for project: 'Keycloak'
  1. Keycloak
  2. KEYCLOAK-8761

User CREDENTIAL records with TYPE 'password-history' are not deleted when "Not Recently Used" Password Policy value is set to 1 from an higher value

    Details

    • Type: Bug
    • Status: Closed (View Workflow)
    • Priority: Major
    • Resolution: Duplicate Issue
    • Affects Version/s: 4.5.0.Final
    • Fix Version/s: 4.7.0.Final
    • Component/s: None
    • Labels:
    • Sprint:
      Keycloak Sprint 15
    • Story Points:
      1
    • Docs QE Status:
      NEW
    • QE Status:
      NEW

      Description

      When the "Not Recently Used" Password Policy value is set to 1 from an higher value (say it was previously set to a very big number like 80, and then reduced/changed to only 1), it is noticed that ONLY one (1) password history is deleted from the 'CREDENTIAL' table. This is incorrect if an user has more passwords in history because of a previous setting of the "Not Recently Used" Password Policy value (for example from 80 to 1).

        Gliffy Diagrams

          Attachments

            Issue Links

              Activity

                People

                • Assignee:
                  hmlnarik Hynek Mlnařík
                  Reporter:
                  hmlnarik Hynek Mlnařík
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  3 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved: