[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: changing userPassword from custom application



Zdenek Styblik wrote:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hello,

let's open up old wounds. Ok, it sounds jerky, but I don't mean it.

Anyway. As the subject suggests, my question is how to code application
which allows user to change his password. Or better to ask, if there is
some [to me] unknown LDAP function which figures out what password
encryption [hash] is used and generates new hash of password, if
application should have idea at all what kind of password encryption is
used.
I think this is just impossible. Login is one thing, changing password
is another.

That's what ldappasswd is for. And no, the application should never have any idea what encryption a server uses. That's purely a server-internal issue.

--
  -- Howard Chu
  CTO, Symas Corp.           http://www.symas.com
  Director, Highland Sun     http://highlandsun.com/hyc/
  Chief Architect, OpenLDAP  http://www.openldap.org/project/