Trusted Contributor.. ISSC Trusted Contributor..
Trusted Contributor..
342 views

CMS Browser login with accented characters in password

Hello,

Some of our users have characters with accents (aka. é, è, à...) in their password, it seems that the CMS browser is not able to handle them at login therefore our users are not able to connect.

According to our investigations it seems to be linked to the "Validator.SafeString=" parameter in the "ESAPI_validation.properties" file in the browser configuration folder, not handling these characters, but we're not sure what to add there.

Thanks,
Best Regards,
Yann Pingot

0 Likes
8 Replies
Micro Focus Expert
Micro Focus Expert

Re: CMS Browser login with accented characters in password

Hello Yann,

In general, we use the same Default Password Policy --> https://docs.microfocus.com/itom/Universal_CMDB:2019.02/admin/UserGroup_c_default_pw_policy

Indeed, we don't specify if the alphabetical characters are from the Latin alphabet or local accented alphabets. This is something to reflect upon.

The informal standard is usually the Latin alphabet or the US/UK keyboard characters as it's widely known and used. The French alphabet is used in France, Canada, current French territories and former French colonies so the use of it it's lower than the US/UK keyboard style. 

I think we can improve our documentation on this aspect to be more specific.

So you would like to add the French characters to the ESAPI validations list?

Kind regards,
Bogdan Mureșan
EMEA CMS Technical Success
Highlighted
Trusted Contributor.. ISSC Trusted Contributor..
Trusted Contributor..

Re: CMS Browser login with accented characters in password

Hello Bogdan,

Thanks for your answer.

Indeed we would like to have them in the validator, since multiple users are not able to use the browser because of that.

Thanks,
Best Regards,
Yann Pingot

0 Likes
Micro Focus Expert
Micro Focus Expert

Re: CMS Browser login with accented characters in password

This is highly experimental but you can edit UCMDB\UCMDBServer\conf\esapi\ESAPI_validation.properties at Validator.SafeString and just append your character at the end of it.

A server restart is needed and you should do it in a non-PROD env as this can block all user authentication.

You can revert it by deleting the extra character. There is no need for escape characters in this particular scenario

Kind regards,
Bogdan Mureșan
EMEA CMS Technical Success
0 Likes
Trusted Contributor.. ISSC Trusted Contributor..
Trusted Contributor..

Re: CMS Browser login with accented characters in password

I've tried different things but it's still now working unfortunately :

- Adding directly characters at the end (before the dash character as explained in the comment below the parameter)
- Adding "\\p{M}" at the beginning 
- Adding "\\p{Latin}" at the beginning

According to this page https://www.regular-expressions.info/unicode.html "\\p{L}" which is already in the validator should work with any letter from any language, but it isn't.
This page may contains the solution..

Here is the original string : "Validator.SafeString=^[\\p{L}\\p{Digit},\\\\:/. _?*&%@;#=+\\[\\]\\(\\)\\|\\"\\,\\{\\}-]*$"

Best regards,
Yann Pingot

0 Likes
Micro Focus Expert
Micro Focus Expert

Re: CMS Browser login with accented characters in password

I'm very curious if with works with the Unicode version like for accented e we have #0137 in Unicode.

This is in your link at the chapter Matching a specific Code Point

 

Kind regards,
Bogdan Mureșan
EMEA CMS Technical Success
0 Likes
Trusted Contributor.. ISSC Trusted Contributor..
Trusted Contributor..

Re: CMS Browser login with accented characters in password

Hi Bogdan,

After trying with code points it's still not working.

However when testing the regex in a validator it was working with any character, so i tried directly on an embedded browser in a ucmdb server instead and it's working perfectly, so i guess there is an issue in the standalone CMS UI / Browser.

Best regards,
Yann Pingot

0 Likes
Micro Focus Expert
Micro Focus Expert

Re: CMS Browser login with accented characters in password

Interesting turn of events.
I'm investigating this. We have some ESAPI validation even in the Tomcat that delivers UCMDB Browser and the New UI.

Kind regards,
Bogdan Mureșan
EMEA CMS Technical Success
0 Likes
Trusted Contributor.. ISSC Trusted Contributor..
Trusted Contributor..

Re: CMS Browser login with accented characters in password

Hi Bogdan,

By any chance do you have an update about this CMS UI bug ?

Thanks,
Best Regards,
Yann Pingot

0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.