Univention Bugzilla – Bug 31142
univention-admingrp-user-passwordreset (ACL test)
Last modified: 2023-03-25 06:42:52 CET
Testing of package "univention-admingrp-user-passwordreset". Set UCR variables : ucr set ldap/acl/user/passwordreset/accesslist/groups/dn="$(group_dn $G_HELPDESK)" ucr set ldap/acl/user/passwordreset/protected/uid="Administrator,$U_PROT Helpdesk user can't set PW of unprotected users after receiving priviledged rights by ACL. The ACL-variable for "protected UIDs" is also omitted. Protected UIDs are still unprotected after setting the ACL-variable. Note: "Permission denied" is returned if the helpdesk user tries to modify the ldap attributes: userPassword, sambaNTPassword, krb5Key, krb5KDCFlags, krb5KeyVersionNumber, sambaPwdLastSet. Tests: /10_ldap/63univention-admingrp-user-passwordreset ,/10_ldap/64univention-admingrp-user-passwordreset-selfmodify and /10_ldap/66univention-admingrp-user-passwordreset-grpingrp are currently affected.
We will not ship a UCS 3.1-2 release; the next UCS release will be UCS 3.2. As such, this bug is moved to the new target milestone.
univention-admingrp-user-passwordreset has been added to autotest-090-master-s3.cfg and autotest-091-master-s4.cfg
With the bugfixes from bug 25408 the Test does not fail anymore
For this bug is no separate QA needed.