Bug 55399 - Do not ignore the password policy by default, only when generating passwords
Do not ignore the password policy by default, only when generating passwords
Product: UCS@school
Classification: Unclassified
Component: Import scripts
UCS@school 5.0
Other Linux
: P5 normal (vote)
: ---
Assigned To: UCS@school maintainers
Depends on: 55392 55400 55415
Blocks: 55393
  Show dependency treegraph
Reported: 2022-11-08 13:56 CET by Tobias Wenzel
Modified: 2022-11-11 17:10 CET (History)
1 user (show)

See Also:
What kind of report is it?: ---
What type of bug is this?: ---
Who will be affected by this bug?: ---
How will those affected feel about the bug?: ---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):
Max CVSS v3 score:


Note You need to log in before you can comment on or make changes to this bug.
Description Tobias Wenzel univentionstaff 2022-11-08 13:56:36 CET
+++ This bug was initially created as a clone of Bug #55392 +++

As a developer using the UCS@school lib
I can expect UCS@school software to honor the set password policies,
so that the security of my domain is as expected.

-- Context/description ---

1. Adapt the UCS@school library to not ignore password policies anymore when creating users.
2. It may still ignore password policies when generating password for new users, as generating passwords that adhere to the current policy is out of scope.
3. Add an option to the school library `User` object to ignore password policies when creating or modifying users.