kanayak123 / pyadselfservice

Easy and secure web based password change portal for Active Directory user accounts.
https://technokan.blogspot.com/2016/10/web-based-python3-password-reset-tool.html
21 stars 7 forks source link

Session expired error after entering the OTP #2

Closed kanayak123 closed 7 years ago

kanayak123 commented 7 years ago

The OTP validation is failing for few usernames with an error in the django_request.log as below

return binascii.a2b_base64(s)
binascii.Error: Incorrect padding
kanayak123 commented 7 years ago

Its a confirmed bug. The OTP validation code was using the encrypted username as well as the appended signed timestamp for the decryption of the username, resulting in failed decryption hence the error.

kanayak123 commented 7 years ago

This is fixed in the latest release