mirror/openldap
2
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2025-01-24 13:24:56 +08:00
Code Issues Packages Projects Releases Wiki Activity

ITS#7788 Allow pwdFailureTime tracking be disabled in policy

Browse Source
This commit is contained in:
Ondřej Kuzník 2020-06-03 11:09:34 +01:00 committed by Quanah Gibson-Mount
parent 0b6ac3fd76
commit a030aacc39
1 changed files with 2 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
servers/slapd/overlays/ppolicy.c
View File

@ -759,8 +759,6 @@ ppolicy_get_default( PassPolicy *pp )
/* Users can change their own password by default */
pp->pwdAllowUserChange = 1;
if ( !pp->pwdMaxRecordedFailure )
pp->pwdMaxRecordedFailure = PPOLICY_DEFAULT_MAXRECORDED_FAILURE;
}
@ -907,7 +905,7 @@ ppolicy_get( Operation *op, Entry *e, PassPolicy *pp )
if ( pp->pwdMaxRecordedFailure < pp->pwdMaxFailure )
pp->pwdMaxRecordedFailure = pp->pwdMaxFailure;
if ( !pp->pwdMaxRecordedFailure )
if ( !pp->pwdMaxRecordedFailure && pp->pwdMinDelay )
pp->pwdMaxRecordedFailure = PPOLICY_DEFAULT_MAXRECORDED_FAILURE;
if ( pp->pwdMinDelay && !pp->pwdMaxDelay ) {
@ -1349,7 +1347,7 @@ ppolicy_bind_response( Operation *op, SlapReply *rs )
snprintf( timestamp_usec.bv_val + timestamp_usec.bv_len-1, sizeof(".123456Z"), ".%06dZ", now_usec.tt_usec );
timestamp_usec.bv_len += STRLENOF(".123456");
if ( rs->sr_err == LDAP_INVALID_CREDENTIALS ) {
if ( rs->sr_err == LDAP_INVALID_CREDENTIALS && ppb->pp.pwdMaxRecordedFailure ) {
int i = 0;
m = ch_calloc( sizeof(Modifications), 1 );