Handle password policy checking inside FD
I use ppolicy in openldap with a specific check_password module. All my passwords are kept in SSHA.
In FD, if I try to change a user password, I always obtain an error about the quality checking: FD send the password in SSHA so the check_password module can't test it and refuse it directly. If I chose to send the password in "clear" in FD, the password is well changed but stored in clear in openLDAP.
I think the only way to handle it is to allow the LDAP FD user to bypass the chek_password (like a rootDN).
(from redmine: issue id 3437, created on 2014-10-24, closed on 2015-02-23)
- Relations:
- relates #3374
- Custom Fields:
- Bug in version: 1.0.8.2