Locking fails with multiple SSH Keys

Description

When trying to lock a user with two entries of type ssh-rsa I receive an error regarding a failed ldap modify, followed by a misleading warning (see fd issue 5788

Distribution Name and Version

Debian / also present at demo.fusiondirectory.org

FusionDirectory Version

1.0.19-1-debian / 1.2

Plugin with the defect

SSH?

PHP version used

7.0+49 (Debian Stretch)

Origin of php packages

Debian Stretch

Steps to Reproduce

Install / activate plugin SSH
Add Two SSH-Keys for a user (e.g. in the form ssh-rsa AAgibberish= comment )
Try to lock the user
Receive an error and a warning : /

Expected behavior:

Locking of the user.

Actual behavior:

Error message:

LDAP error LDAP modify operation failed! Object: uid=testsasl,ou=people,dc=fusiondirectory,dc=org Error: Type or value exists (sshPublicKey: value #0 provided more than once, while operating on 'uid=testsasl,ou=people,dc=fusiondirectory,dc=org' using LDAP server 'ldap://demo.fusiondirectory.org')

Followed by a warning message (see other issue to be created):

Account locking Password method "sasl" does not support locking. Account "uid=testsasl,ou=people,dc=fusiondirectory,dc=org" has not been locked!

Reproduces how often: 100% (5/5 tries)

Additional Information

The warning message is mis-leading, ~~I will create an other issue for that.~~ (see fd issue 5788).

Edited Mar 13, 2018 by Krügl Matthias