Name: PK36834
=============
 
Summary:
   PUMA: Security SimpleUserValidator
 
Problem Description:
   Problems while validating input data in "Manage Users and Groups" portlet.
   
   1. Data validation of Create User task incorrect if value of password.min_characters equals password.max_characters. If the values of the WP ValidationService (in the AppServers admin console) settings password.min_characters equals password.max_characters are identical, the input validation of the Create User portlet allows to set passwords with a length of any length between 1 and 60 characters.
   2. Incorrect error messages if the input data validation of multiple input fields fails.
   If the input validation for multiple input fields fails, an incorrect error message is posted.
   
 
Problem Solution:
   1. removed typo on Password Validation routine, so that default values are only used if max value < min value.
   2. corrected the error handling in the input validation, so that the parametric information of a input data constraints violation does not override the parameters of another
   
 
Failing Module(s):
   Authorization/Authentication (login/logout)
 
Affected Users:
   All users
 
Version Information:
    Portal Version(s): 6.0.0.0
     Pre-Requisite(s): 
      Co-Requisite(s): ---
 
Platform Specific:
   This fix applies to all platforms.
 
Installation:
   NOTE:  YOU MUST FIRST DOWNLOAD THE UPDATE INSTALLER TOOL IN ORDER TO INSTALL A FIX.
          The Portal Update Installer can be downloaded from the following link:
          http://www.ibm.com/software/genservers/portal/support
 
   1. Create temporary "fix" directory to store the jar file.
   2. Copy jar file to this directory.
   3. Shutdown WebSphere Portal.
   4. Follow the fix installation instructions that are packaged with
      the Portal Update Installer on how to install the fix.
   5. Restart WebSphere Portal.
   6. The temporary directory may be removed.
 
Un-Installation:
   NOTE:  FIXES MUST BE REMOVED IN THE ORDER THEY WERE APPLIED.  DO NOT REMOVE
          A FIX UNLESS ALL FIXES APPLIED AFTER IT HAVE FIRST BEEN REMOVED.
          YOU MAY REAPPLY ANY REMOVED FIX.
 
   1. Shutdown WebSphere Portal.
   2. Follow the instructions that are packaged with the
      Portal Update Installer on how to uninstall the fix.
   3. Restart WebSphere Portal.