AA 8.1.3 Day Light Savings related OTP Authenticatin Failures
search cancel

AA 8.1.3 Day Light Savings related OTP Authenticatin Failures


Article ID: 130285


Updated On:


CA Rapid App Security CA Advanced Authentication CA API Gateway


CA Strong Authentication's OTP (One Time Password) Credentials fail to authenticate when Day Light Saving time adjustment occurs.


CA Strong Authentication Version 8.1.x


Adjustments were not being made in the code for zones that were affected by DST (Day Light Saving) adjustment to time.


CA-StrongAuth-8.1.3-DE247998-Hotfix.zip should be requested from CA Strong Authentication Support and applied.

================================= Explanation of the bug that was fixed ============= 
We fetch the GMT time from DB and adjust it to local time with offset calculated. 
For example, if server time zone is IST, we do get time in GMT and adjust offset of 330 (in minutes) as there is 5 Hours and 30 hours of difference (Offset is computed incorrectly and has been corrected in the provided patch) 

Say, When the PST time is getting DST adjusted, the offset computed is not correct. In other words, we have identified a bug in the code where we are using the incorrect adjust offset when DST hits. 
========================================= ================================= 

Additional Information

*All versions above 8.1.3 have assimilated the fix.