[om-infra] sso - custom username support is working now

Jean-Claude Vanier jclvanier at gmail.com
Fri Jan 22 04:53:18 EST 2016


Big thanks Raphaël.
Anyone experiences this: manager gives a blank page ?

2016-01-21 21:59 GMT+01:00 Raphaël Jadot <rj at hodo.fr>:
> https://secure.waynesallee.com/openmandriva/infrawiki/index.php?title=Ruby#Step_for_adding_password_encrypting_policy
>
> I had to create a password for cn=admin,cn=config
> https://secure.waynesallee.com/openmandriva/infrawiki/index.php?title=Ruby#Admin_users_and_password
>
> 20.01.2016, 19:53, "Robert Xu" <robxu9 at gmail.com>:
>> Actually, I see it now - it's default. Great! All the passwords are
>> being hashed.
>>
>> Raphael, you may want to change your password so that it gets hashed.
>> Other than that, I believe we should start hooking up systems!
>>
>> On 20 January 2016 at 12:41, Robert Xu <robxu9 at gmail.com> wrote:
>>>  Is it default? i.e. all password changes will be automatically hashed?
>>>
>>>  On 20 Jan 2016 7:25 a.m., "Jean-Claude Vanier" <jclvanier at gmail.com> wrote:
>>>>  ppolicy is installed and active. It is possible to encypt the password
>>>>  using phpldap admin.
>>>>  See "uid=jvanier,ou=People,dc=openmandriva,dc=org" and export this entry.
>>>>
>>>>  2016-01-19 19:44 GMT+01:00 Robert Xu <robxu9 at gmail.com>:
>>>>  >
>>>>  > On 19 Jan 2016 13:19, "Anurag Bhandari" <ab at anuragbhandari.com> wrote:
>>>>  >>
>>>>  >>
>>>>  >> On 19-Jan-2016 1:26 pm, "Robert Xu" <robxu9 at gmail.com> wrote:
>>>>  >> >
>>>>  >> > Okay, so it's a good thing I caught this - LDAP is storing passwords
>>>>  >> > in clear text. That is unacceptable.
>>>>  >>
>>>>  >> Whoops! That's outrageous. Totally unacceptable.
>>>>  >>
>>>>  >> >
>>>>  >> > Can someone figure out a way to make LDAP store them hashed? We
>>>>  >> > cannot
>>>>  >> > proceed with passwords in clear text.
>>>>  >>
>>>>  >> I can check into this. Where's the data store for LDAP? Also, did you
>>>>  >> check if there's a setting in lemonldap to enable encrypted passwords.
>>>>  >> At
>>>>  >> any rate, such a setting should be default.
>>>>  >
>>>>  > In Ruby. There's no setting in LemonLDAP, so we probably forgot to
>>>>  > enable
>>>>  > some sort of setting in LDAP itself - ppolicy maybe?
>>>>  >
>>>>  >
>>>>  > _______________________________________________
>>>>  > OM-Infra mailing list
>>>>  > OM-Infra at ml.openmandriva.org
>>>>  > http://ml.openmandriva.org/mailman/listinfo/om-infra_ml.openmandriva.org
>>>>  >
>>>>
>>>>  _______________________________________________
>>>>  OM-Infra mailing list
>>>>  OM-Infra at ml.openmandriva.org
>>>>  http://ml.openmandriva.org/mailman/listinfo/om-infra_ml.openmandriva.org
>>
>> --
>> cheers, Robert :: github.com/robxu9
>>
>> _______________________________________________
>> OM-Infra mailing list
>> OM-Infra at ml.openmandriva.org
>> http://ml.openmandriva.org/mailman/listinfo/om-infra_ml.openmandriva.org
>
> Raphaël Jadot
>
> _______________________________________________
> OM-Infra mailing list
> OM-Infra at ml.openmandriva.org
> http://ml.openmandriva.org/mailman/listinfo/om-infra_ml.openmandriva.org



More information about the OM-Infra mailing list