[om-infra] sso - custom username support is working now

Raphaël Jadot rj at hodo.fr
Thu Jan 21 10:20:23 EST 2016


Did you connect with "jvanier" ?

BTW i replaced rjadot by raphael and encrypted my password :)


21.01.2016, 09:48, "Jean-Claude Vanier" <jclvanier at gmail.com>:
> This morning (UTC) I could get a login page from auth.openmandriva.org
> I entered my ldap id/psw and but now I cannot connect to either auth
> or manager though apache2 seems running
> Any idea?
>
> 2016-01-20 23:27 GMT+01:00 Raphaël Jadot <rj at hodo.fr>:
>>  Perfect,
>>
>>  I may need te explore lemon… a little to be sure to understand it :)
>>
>>  --
>>  Sent from Yandex.Mail for mobile
>>
>>  20.01.2016, 19:53, "Robert Xu" <robxu9 at gmail.com>:
>>
>>  Actually, I see it now - it's default. Great! All the passwords are
>>  being hashed.
>>
>>  Raphael, you may want to change your password so that it gets hashed.
>>  Other than that, I believe we should start hooking up systems!
>>
>>  On 20 January 2016 at 12:41, Robert Xu <robxu9 at gmail.com> wrote:
>>
>>   Is it default? i.e. all password changes will be automatically hashed?
>>
>>   On 20 Jan 2016 7:25 a.m., "Jean-Claude Vanier" <jclvanier at gmail.com> wrote:
>>
>>   ppolicy is installed and active. It is possible to encypt the password
>>   using phpldap admin.
>>   See "uid=jvanier,ou=People,dc=openmandriva,dc=org" and export this entry.
>>
>>   2016-01-19 19:44 GMT+01:00 Robert Xu <robxu9 at gmail.com>:
>>   >
>>   > On 19 Jan 2016 13:19, "Anurag Bhandari" <ab at anuragbhandari.com> wrote:
>>   >>
>>   >>
>>   >> On 19-Jan-2016 1:26 pm, "Robert Xu" <robxu9 at gmail.com> wrote:
>>   >> >
>>   >> > Okay, so it's a good thing I caught this - LDAP is storing passwords
>>   >> > in clear text. That is unacceptable.
>>   >>
>>   >> Whoops! That's outrageous. Totally unacceptable.
>>   >>
>>   >> >
>>   >> > Can someone figure out a way to make LDAP store them hashed? We
>>   >> > cannot
>>   >> > proceed with passwords in clear text.
>>   >>
>>   >> I can check into this. Where's the data store for LDAP? Also, did you
>>   >> check if there's a setting in lemonldap to enable encrypted passwords.
>>   >> At
>>   >> any rate, such a setting should be default.
>>   >
>>   > In Ruby. There's no setting in LemonLDAP, so we probably forgot to
>>   > enable
>>   > some sort of setting in LDAP itself - ppolicy maybe?
>>   >
>>   >
>>   > _______________________________________________
>>   > OM-Infra mailing list
>>   > OM-Infra at ml.openmandriva.org
>>   > http://ml.openmandriva.org/mailman/listinfo/om-infra_ml.openmandriva.org
>>   >
>>
>>   _______________________________________________
>>   OM-Infra mailing list
>>   OM-Infra at ml.openmandriva.org
>>   http://ml.openmandriva.org/mailman/listinfo/om-infra_ml.openmandriva.org
>>
>>  --
>>  cheers, Robert :: github.com/robxu9
>>
>>  _______________________________________________
>>  OM-Infra mailing list
>>  OM-Infra at ml.openmandriva.org
>>  http://ml.openmandriva.org/mailman/listinfo/om-infra_ml.openmandriva.org
>>
>>  _______________________________________________
>>  OM-Infra mailing list
>>  OM-Infra at ml.openmandriva.org
>>  http://ml.openmandriva.org/mailman/listinfo/om-infra_ml.openmandriva.org
>
> _______________________________________________
> OM-Infra mailing list
> OM-Infra at ml.openmandriva.org
> http://ml.openmandriva.org/mailman/listinfo/om-infra_ml.openmandriva.org

Raphaël Jadot



More information about the OM-Infra mailing list