[Date Prev][Date Next] [Chronological] [Thread] [Top]

(ITS#9156) latest ppolicy draft support

To: openldap-its@OpenLDAP.org
Subject: (ITS#9156) latest ppolicy draft support
From: ondra@openldap.org
Date: Thu, 23 Jan 2020 23:44:27 +0000
Auto-submitted: auto-generated (OpenLDAP-ITS)

Full_Name: Ondrej Kuznik
Version: master
OS: 
URL: https://github.com/mistotebe/openldap/tree/ppolicy10
Submission from: (NULL) (212.159.69.225)


There have been a few iterations of the ppolicy behera draft and it would be
useful to support (some) of the documented features.

The following are coming:
- pwdGraceExpiry
- pwdMaxLength
- pwdStartTime and pwdEndTime
- pwdMinDelay and pwdMaxDelay (as a soft-lockout, contingent with other
implementations based on an informal survey during latest LDAPCon)
- pwdMaxIdle (and moving the relevant parts of lastbind overlay into slapd code
as it is a shared dependency of a few things now)
- the ability to store per-policy arguments to check_password()
- updates/fixes to the draft that should have been identified before some of the
above were proposed (mostly typos and ASN.1 schema updates)

Prev by Date: Re: (ITS#9155) LMDB: List of spill pages leaks after transaction
Next by Date: (ITS#9157) return additional error code information when OPT_X_TLS_NEWCTX fails
Index(es):
- Chronological
- Thread