Support Article

Current password is pre-populated in password reset screen

SA-29630

Summary



When a user's password expires, they are redirected to password reset screen. "Current Password" is populated with the long encrypted password value.

If the user does not manually clear it before entering the Current password, the section fails validation.


Error Messages


Not Applicable 


Steps to Reproduce



1.Allow users password to expire.
2.Log into the application.


Root Cause



The issue is due to the defect in the Pega rules or code.

Before displaying change password section, operator instance is opened and hence the value is pre-populated, the property pyPwdOld is of type Password so its displayed in encrypted form. 

On installing the hotfix, the field will be displayed as blank and user has to enter the current password.

Resolution



Apply HFix-30181.

 

Published October 26, 2016 - Updated November 8, 2016

Have a question? Get answers now.

Visit the Collaboration Center to ask questions, engage in discussions, share ideas, and help others.