On Fri, Mar 12, 2010 at 04:45:27PM +0100, Ralf Haferkamp wrote:
Hi,
here are some more patches regarding the handling of the LDAP ppolicy
control.
Patch1: An error code of LDAP_INVALID_CREDENTIALS + a ppolicy control
with the error PP_passwordExpired indicates an expire password
as well.
Patch2: When doing LDAP authentiation for PAM_PRELIM_CHECK, treat
SDAP_AUTH_PW_EXPIRED as a successful authentication to be able to
continue the the password change
Patch3: Display a messages to the user when a password change is going to
be initiated because of an expired password.
feedback is of course welcome,
Ralf
Hi Ralf,
thank you for the contribution, I agree with all 4 patches. I will ACK
the patches after I've run some tests to see if there are no
regressions.
bye,
Sumit