DataNode: Password is not checked for CA Upload - Githubissues

Graylog2 / graylog2-server

Free and open log management

https://www.graylog.org

Other

7.21k stars 1.05k forks source link

DataNode: Password is not checked for CA Upload #19776

Closed vvasylenko closed 1 day ago

vvasylenko commented 4 days ago

When the user upload their own CA, the password of this CA is not checked

Expected Behavior

User can proceed with migration when wrong password was entered while Upload CA. Error appears that invalid password was typed

Current Behavior

CA is uploaded with a wrong password and it allows to proceed with migration

Steps to Reproduce (for bugs)

Go to Data Node migration
Open Upload CA tab
Add your CA
Type wrong password
Click Next button

Your Environment

Graylog Version: 6.1.0-alpha.3
Java Version:
OpenSearch Version:
MongoDB Version:
Operating System:
Browser version:

todvora commented 1 day ago

Tested that in the preflight and during migration, both places seem to be handling passwords correctly:

vvasylenko commented 1 day ago

Private key was not encrypted