[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: changing userPassword from custom application

To: Zdenek Styblik <stybla@turnovfree.net>
Subject: Re: changing userPassword from custom application
From: Howard Chu <hyc@symas.com>
Date: Mon, 14 Dec 2009 16:38:58 -0800
Cc: "openldap-technical@openldap.org" <openldap-technical@openldap.org>
In-reply-to: <4B26CFAC.501@turnovfree.net>
References: <4B26CFAC.501@turnovfree.net>
User-agent: Mozilla/5.0 (X11; U; Linux i686; rv:1.9.3a1pre) Gecko/20091121 SeaMonkey/2.0a1pre Firefox/3.0.3

Zdenek Styblik wrote:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hello,

let's open up old wounds. Ok, it sounds jerky, but I don't mean it.

Anyway. As the subject suggests, my question is how to code application
which allows user to change his password. Or better to ask, if there is
some [to me] unknown LDAP function which figures out what password
encryption [hash] is used and generates new hash of password, if
application should have idea at all what kind of password encryption is
used.
I think this is just impossible. Login is one thing, changing password
is another.

That's what ldappasswd is for. And no, the application should never have anyidea what encryption a server uses. That's purely a server-internal issue.


--
  -- Howard Chu
  CTO, Symas Corp.           http://www.symas.com
  Director, Highland Sun     http://highlandsun.com/hyc/
  Chief Architect, OpenLDAP  http://www.openldap.org/project/

Follow-Ups:
- Re: changing userPassword from custom application
  - From: Zdenek Styblik <stybla@turnovfree.net>
- Re: changing userPassword from custom application
  - From: Michael Ströder <michael@stroeder.com>

References:
- changing userPassword from custom application
  - From: Zdenek Styblik <stybla@turnovfree.net>

Prev by Date: Re: changing userPassword from custom application
Next by Date: Re: changing userPassword from custom application
Index(es):
- Chronological
- Thread