Univention Bugzilla – Bug 55415
Do not ignore the password policy by default, only when generating passwords
Last modified: 2023-05-26 10:56:16 CEST
When creating a user or modifying a user and setting a password, the password should be checked against the current password policy. When #900 is implemented this will be automatically the case.
Until a new UCS@school release (5.1 or later) is made, the behavior should however not change. So to restore the current (5.0v3) behavior, set the option on the User class to the ignore password policy when creating a user. Do not set the "ignore" option when changing a user, as that was the old behavior.
The behavior of the UMC module can be changed by setting a UCR variable. By default (when the UCRV is unset) it should be the old behavior (ignore the password policy when creating a user, but checking it when changing a user).
All fixed and tested in
Errata updates for UCS@school 5.0 v3 have been released.
If this error occurs again, please clone this bug.
*** Bug 52731 has been marked as a duplicate of this bug. ***