Bug 811296

Summary: Notify user that password needs to be reset in forms-based login
Product: Red Hat Enterprise Linux 6 Reporter: Dmitri Pal <dpal>
Component: ipaAssignee: Rob Crittenden <rcritten>
Status: CLOSED ERRATA QA Contact: IDM QE LIST <seceng-idm-qe-list>
Severity: urgent Docs Contact:
Priority: urgent    
Version: 6.3CC: jgalipea, mkosek, nsoman, syeghiay
Target Milestone: rc   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: ipa-2.2.0-10.el6 Doc Type: Bug Fix
Doc Text:
No documentation needed.
 Story Points: ---
Clone Of: Environment:
Last Closed: 2012-06-20 13:26:43 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:

Description Dmitri Pal 2012-04-10 16:15:46 UTC 
This bug is created as a clone of upstream ticket:
https://fedorahosted.org/freeipa/ticket/2608

We have a ticket, #2276, to allow resetting the password using forms-based login. As a step towards that it would be good to be able to detect that a reset is required. Right now it reports an incorrect password.
Comment 2 Rob Crittenden 2012-04-17 19:04:49 UTC 
Two patches. The first is to add a new header, X-IPA-Rejection-Reason to rpcserver.py. The second has the UI interpret the reason code and display different messages.

master:
7b515bddbcec2499fb765be311b3d093edcf6db2
c64bcafa137474cf31cd99e7cd6c28a00add85ff

ipa-2-2:
d05a5c646087877abe3819116cfc84ef9b053567
bd84fb445845bffc03109f3c69201c45da46fd48
Comment 7 Martin Kosek 2012-04-25 11:50:29 UTC 
    Technical note added. If any revisions are required, please edit the "Technical Notes" field
    accordingly. All revisions will be proofread by the Engineering Content Services team.
    
    New Contents:
No documentation needed.
Comment 8 Namita Soman 2012-05-03 13:47:05 UTC 
verified using ipa-server-2.2.0-12.el6.x86_64

Got error:

Password expired

Please run kinit to reset the password and then try to login again.

If the problem persists, contact your administrator.
Comment 10 errata-xmlrpc 2012-06-20 13:26:43 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

http://rhn.redhat.com/errata/RHBA-2012-0819.html