View Issue Details

IDProjectCategoryView StatusLast Update
0004774SOGoBackend Generalpublic2019-07-13 07:52
Reportermarkus435425 Assigned To 
PrioritynormalSeverityminorReproducibilityalways
Status newResolutionopen 
Platform[Server] LinuxOSRHEL/CentOSOS Version7
Summary0004774: password change using sha256-crypt/sha512-crypt with OpenLDAP backend)
Description

The fix that has been implemented for this issue [1] has been reverted in a later commit [2]. As far as I can tell, openldap does still require the {crypt} prefix. This has been tested using debian 9.9 and slapd 2.4.44.

What exactly was the reason to revert the fix?

regards

[1] https://sogo.nu/bugs/view.php?id=4137
[2] https://github.com/inverse-inc/sogo/commit/b0e59f9ac99f56f3212660659a2e7b37d9afd4ad#diff-3def561ac819d0cad0891746f3f84a2a

Steps To Reproduce

(Taken from Bug 0004137 as it is still present)

1) Use an OpenLDAP authentication backend.

2) Configure:
userPasswordAlgorithm = "sha512-crypt";
SOGoPasswordChangeEnabled = "YES";

3) Login

4) Change password

5) Logout

... now you can't login again.

TagsNo tags attached.

Activities

Eslam.Basyouni

Eslam.Basyouni

2019-07-13 07:52

reporter   ~0013669

i have the same problem where i have freeipa as my ldap and i can change password from sogo but when i log out and try to log in it's not work but i must pust old password this mean that the password didn't change

Issue History

Date Modified Username Field Change
2019-07-04 14:00 markus435425 New Issue
2019-07-13 07:52 Eslam.Basyouni Note Added: 0013669