57226 – selfservice-invitation mail is not sent when a policy is applied to "self registered users" object

Bug 57226 - selfservice-invitation mail is not sent when a policy is applied to "self registered users" object

Summary: selfservice-invitation mail is not sent when a policy is applied to "self reg...

Status:	CLOSED FIXED

Alias:	None

Product:	UCS
Classification:	Unclassified
Component:	Self Service
Version:	UCS 5.0
Hardware:	Other Linux

Importance:	P5 normal
Target Milestone:	UCS 5.0-8-errata
Assignee:	Johannes Königer
QA Contact:	Felix Botner

URL:
Keywords:

Depends on:
Blocks:

Reported:	2024-04-17 16:09 CEST by Finn David
Modified:	2024-06-26 13:03 CEST (History)
CC List:	1 user (show)

See Also:
What kind of report is it?:	Bug Report
What type of bug is this?:	4: Minor Usability: Impairs usability in secondary scenarios
Who will be affected by this bug?:	2: Will only affect a few installed domains
How will those affected feel about the bug?:	3: A User would likely not purchase the product
User Pain:	0.137
Enterprise Customer affected?:	Yes
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:	2024032821000153
Bug group (optional):
Customer ID:
Max CVSS v3 score:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Finn David

2024-04-17 16:09:49 CEST

Tested on: UCS: 5.0-7 errata1023

When inviting new users with the users module a mail can be send if the checkbox is activated.

When applying a password policy to the "self registered users" object, this function doesn't work anymore: no mail gets send and nothing happens in /var/log/mail.log.

Comment 1 Finn David

2024-04-18 11:21:25 CEST

Upon further investigation, the cause for this wrong behaviour seems to be the expiry date in the password policy:

If the expiry date is unset, the invitation email gets send.
If the expiry date is set, the invitation email won't get send.

Comment 2 Finn David

2024-05-15 10:49:06 CEST

This problem has even more far-reaching consequences than first assumed: We found out that the passwordexpiry function of the Samba policy does not apply if a user changes their password from a Windows client. In this case (strangely enough) the UMC/UDM policy and the password expiry stored there applies. Due to the bug here, it is therefore currently not possible to operate a Samba environment in which users are invited via the self-service and the passwordexpiry policy will be used.

Comment 3 Johannes Königer

2024-06-20 14:22:51 CEST

univention-self-service (5.0.10-2)
08e3167b72fe | fix(self-service): Use sambaPwdLastSet in invitation mail listener filter
ucs-test (10.0.22-6)
faccbafb1f1a | test(self-service): Test self-registration mail delivery

Successful build
Package: univention-self-service
Version: 5.0.10-2
Branch: 5.0-0
Scope: errata5.0-8

The filter was adjusted to use sambaPwdLastSet for the invitation mail listener filter.

Comment 4 Felix Botner

2024-06-20 14:56:57 CEST

OK - univention-self-service 5.0.10-2
OK - tests
OK - yaml

Comment 5 Iván.Delgado

2024-06-26 13:03:33 CEST

<https://errata.software-univention.de/#/?erratum=5.0x1073>