9:45 a.m.
Hi,
here are some more patches regarding the handling of the LDAP ppolicy
control.
Patch1: An error code of LDAP_INVALID_CREDENTIALS + a ppolicy control
with the error PP_passwordExpired indicates an expire password
as well.
Patch2: When doing LDAP authentiation for PAM_PRELIM_CHECK, treat
SDAP_AUTH_PW_EXPIRED as a successful authentication to be able to
continue the the password change
Patch3: Display a messages to the user when a password change is going to
be initiated because of an expired password.
feedback is of course welcome,
Ralf
10:14 a.m.
On Fri, Mar 12, 2010 at 04:45:27PM +0100, Ralf Haferkamp wrote:
Hi,
here are some more patches regarding the handling of the LDAP ppolicy
control.
Patch1: An error code of LDAP_INVALID_CREDENTIALS + a ppolicy control
with the error PP_passwordExpired indicates an expire password
as well.
Patch2: When doing LDAP authentiation for PAM_PRELIM_CHECK, treat
SDAP_AUTH_PW_EXPIRED as a successful authentication to be able to
continue the the password change
Patch3: Display a messages to the user when a password change is going to
be initiated because of an expired password.
feedback is of course welcome,
Ralf
Hi Ralf,
thank you for the contribution, I agree with all 4 patches. I will ACK
the patches after I've run some tests to see if there are no
regressions.
bye,
Sumit
7:01 a.m.
On Fri, Mar 12, 2010 at 04:45:27PM +0100, Ralf Haferkamp wrote:
Hi,
here are some more patches regarding the handling of the LDAP ppolicy
control.
Patch1: An error code of LDAP_INVALID_CREDENTIALS + a ppolicy control
with the error PP_passwordExpired indicates an expire password
as well.
Patch2: When doing LDAP authentiation for PAM_PRELIM_CHECK, treat
SDAP_AUTH_PW_EXPIRED as a successful authentication to be able to
continue the the password change
Patch3: Display a messages to the user when a password change is going to
be initiated because of an expired password.
feedback is of course welcome,
Ralf
ACK
bye,
Sumit
7:16 a.m.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 03/15/2010 08:01 AM, Sumit Bose wrote:
On Fri, Mar 12, 2010 at 04:45:27PM +0100, Ralf Haferkamp wrote:
> Hi,
>
> here are some more patches regarding the handling of the LDAP ppolicy
> control.
>
> Patch1: An error code of LDAP_INVALID_CREDENTIALS + a ppolicy control
> with the error PP_passwordExpired indicates an expire password
> as well.
> Patch2: When doing LDAP authentiation for PAM_PRELIM_CHECK, treat
> SDAP_AUTH_PW_EXPIRED as a successful authentication to be able to
> continue the the password change
> Patch3: Display a messages to the user when a password change is going to
> be initiated because of an expired password.
>
> feedback is of course welcome,
> Ralf
ACK
bye,
Sumit
Pushed to master and 1-1-0
- --
Stephen Gallagher
RHCE 804006346421761
Delivering value year after year.
Red Hat ranks #1 in value among software vendors.
http://www.redhat.com/promo/vendor/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/
iEYEARECAAYFAkueJRcACgkQeiVVYja6o6PjxgCeNX7gAvnK6BojZ1+DPSd7049C
v/QAnRKN5Q+aJ9buRVeQTZ0Z/lxKwX7v
=BFPg
-----END PGP SIGNATURE-----
5208
days inactive
5211
days old
sssd-devel@lists.fedorahosted.org
3 comments
3 participants
participants (3)
-
Ralf Haferkamp -
Stephen Gallagher -
Sumit Bose