Github user pdion891 commented on the issue:
https://github.com/apache/cloudstack/pull/1684
@abhinandanprateek I did replace the following 4 settings by the original
values. But after restarting jetty I'm unable to login, but this time the
behavior is a bit different, it look like it doesn't try to login, no log or
message in the UI.
```
update configuration set value=null where
name='user.password.encoders.exclude';
update configuration set value='SHA256SALT,MD5,LDAP,PLAINTEXT' where
name='user.authenticators.order';
update configuration set value=null where
name='user.authenticators.exclude';
update configuration set value='SHA256SALT,MD5,LDAP,PLAINTEXT' where
name='user.password.encoders.order';
```
Could it be possible the authentication order is not followed at the
login? if the password does not meet ``PBKDF2`` requirement, which is the first
in the order list of 4.9.0, shouldn't try with the next encoder in the list and
so on?
---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enabled but not working, please
contact infrastructure at infrastruct...@apache.org or file a JIRA ticket
with INFRA.
---
