First Last Prev Next    This bug is not in your last search results.
Bug 56020 - UDM users/user overridePWHistory should add the new password to the password history
UDM users/user overridePWHistory should add the new password to the password ...
Status: CLOSED FIXED
Product: UCS
Classification: Unclassified
Component: UMC - Users
UCS 4.4
Other Linux
: P5 normal (vote)
: UCS 5.0-3-errata
Assigned To: Florian Best
Julia Bremer
https://git.knut.univention.de/univen...
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2023-04-27 15:38 CEST by Florian Best
Modified: 2023-05-10 13:13 CEST (History)
3 users (show)

See Also:
What kind of report is it?: Bug Report
What type of bug is this?: 4: Minor Usability: Impairs usability in secondary scenarios
Who will be affected by this bug?: 4: Will affect most installed domains
How will those affected feel about the bug?: 3: A User would likely not purchase the product
User Pain: 0.274
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):
Max CVSS v3 score:
best: Patch_Available+

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Florian Best univentionstaff 2023-04-27 15:38:58 CEST 
UDM users/user provides a flag "overridePWHistory" which prevents that during setting the new password the past password history is checked.

But this also prevents that the to-be-set new password is added to the password history.

→ We should always add a new password to the password history.
Comment 1 Florian Best univentionstaff 2023-05-03 16:13:57 CEST 
Newly set passwords are now always added to the password history even if the check for password history is disabled.

univention-directory-manager-modules.yaml
2c6026549c6a | fix(users/user): always add new password to password history

univention-directory-manager-modules (15.0.20-3)
2c6026549c6a | fix(users/user): always add new password to password history
Comment 2 Julia Bremer univentionstaff 2023-05-09 22:40:59 CEST 
Successful build
Package: univention-directory-manager-modules
Version: 15.0.20-3A~5.0.0.202305092223
Branch: ucs_5.0-0
Scope: errata5.0-3

5c19745925 Bug #56020: fixup! fix(users/user): always add new password to password history

OK: YAML
OK: Password is always written to the pwhistory.
First Last Prev Next    This bug is not in your last search results.