[Freeipa-devel] [PATCH] Support password change operation by direct manipulation of userPassword
Simo Sorce
ssorce at redhat.com
Mon Aug 11 22:17:06 UTC 2008
On Thu, 2008-07-24 at 11:13 -0400, Simo Sorce wrote:
> On Wed, 2008-07-23 at 10:20 -0400, Simo Sorce wrote:
> > This is an initial patch to support generating kerberos key material
> > (and other hashes) when an ldap ADD or MODIFY operation is performed on
> > the userPassword attribute.
> >
> > Basic testing seem to work, but I'd like feedback both on the method
> > used and on the implementation. I have probably missed something as I
> > had to work on the patch at different times with large intervals between
> > each coding session, so please test it if you can before I push it to
> > master.
>
> New patch, this incorporate suggestions to create helper functions for
> common code and also fixes quite a number of bugs, thanks to Rich for a
> quite accurate analysis too.
Another revision, this one removes the requirement to have an ssl
connection to just ldapadd/ldapmodify the userPassword attribute.
This would be a change in behavior for DS and may cause problems to
existing applications.
Simo.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0001-Implement-password-operation-checks-and-key-material.patch
Type: application/mbox
Size: 40273 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20080811/55acdc42/attachment.mbox>
More information about the Freeipa-devel
mailing list