Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feature: ability to change custom password fields #864

Closed
davidcoutadeur opened this issue Mar 13, 2024 · 4 comments · Fixed by #865
Closed

feature: ability to change custom password fields #864

davidcoutadeur opened this issue Mar 13, 2024 · 4 comments · Fixed by #865
Assignees
@davidcoutadeur
Labels
enhancement
Milestone
1.6.0

Comments

@davidcoutadeur
Copy link

This feature is proposed and developed by @markus-96

This issue is for discussing the details of this feature.

Here is the original discussion in PR: #751

I think I have written everything needed for this feature. Only the messages shown on the page have to be changed, and also the translations. I will try my best here. I will remove [in progress] when everything is finished and after some additional testing.

You will be able to:

    setup as many app-passwords as you want,
    set the name of the app and the corresponding attribute,
    setup additional password policies,
    setup who changes the password,
    the hash algorithm

You can use it also for updating user information, but I do not think this would be very user friendly.

Also, take care about the discussion regarding this feature: https://github.com/ltb-project/self-service-password/discussions/745
@davidcoutadeur davidcoutadeur added this to the 1.6.0 milestone Mar 13, 2024
@davidcoutadeur davidcoutadeur self-assigned this Mar 13, 2024
davidcoutadeur pushed a commit that referenced this issue Mar 13, 2024
ability to change custom password fields, developped by @markus-96 (#864
c7ba816 
)
This was referenced Mar 13, 2024
Merged
Closed
@davidcoutadeur
Copy link
Author

davidcoutadeur commented Mar 13, 2024
edited

This feature is now provided in #865

davidcoutadeur pushed a commit that referenced this issue Mar 13, 2024
fix title underlining in doc (#864)
8d8f685
davidcoutadeur pushed a commit that referenced this issue Mar 13, 2024
remove useless modifications brought by previous commits (#864)
481e613
davidcoutadeur pushed a commit that referenced this issue Mar 15, 2024
ability to change custom password fields, developped by @markus-96 (#864
7cd8616 
)
davidcoutadeur pushed a commit that referenced this issue Mar 15, 2024
fix title underlining in doc (#864)
22fdb3f
davidcoutadeur pushed a commit that referenced this issue Mar 15, 2024
ability to change custom password fields, developped by @markus-96 (#864
3e7fa95 
)
davidcoutadeur pushed a commit that referenced this issue Mar 15, 2024
fix title underlining in doc (#864)
43ca4cf
@markus-96 markus-96 mentioned this issue Mar 18, 2024
Closed
davidcoutadeur pushed a commit that referenced this issue Apr 4, 2024
ability to change custom password fields, developped by @markus-96 (#864
49ef836 
)
davidcoutadeur pushed a commit that referenced this issue Apr 4, 2024
fix title underlining in doc (#864)
1cb957e
markus-96 pushed a commit to markus-96/self-service-password that referenced this issue Apr 8, 2024
@markus-96
ability to change custom password fields, developped by @markus-96 (l…
e42e4ac 
…tb-project#864)
markus-96 pushed a commit to markus-96/self-service-password that referenced this issue Apr 8, 2024
@markus-96
fix title underlining in doc (ltb-project#864)
377fe6b
davidcoutadeur pushed a commit that referenced this issue Apr 8, 2024
ability to change custom password fields, developped by @markus-96 (#864
7ed627f 
)
davidcoutadeur pushed a commit that referenced this issue Apr 8, 2024
fix title underlining in doc (#864)
57c2605
davidcoutadeur pushed a commit that referenced this issue Apr 8, 2024
fix change_password() call in changecustompwdfield (#864)
a810f05
davidcoutadeur pushed a commit that referenced this issue Apr 8, 2024
fix check_password call in check_password_strength function (#864)
d69a90d
davidcoutadeur pushed a commit that referenced this issue Apr 15, 2024
ability to change custom password fields, developped by @markus-96 (#864
13eba49 
)
davidcoutadeur pushed a commit that referenced this issue Apr 15, 2024
fix title underlining in doc (#864)
6d468e9
davidcoutadeur pushed a commit that referenced this issue Apr 15, 2024
fix change_password() call in changecustompwdfield (#864)
d58a990
davidcoutadeur pushed a commit that referenced this issue Apr 15, 2024
fix check_password call in check_password_strength function (#864)
ac24473
davidcoutadeur pushed a commit that referenced this issue Apr 15, 2024
improve custom password field documentation (#864)
f1d390e
davidcoutadeur pushed a commit that referenced this issue Apr 15, 2024
add new custom password parameters in default configuration file (#864)
f954809
davidcoutadeur pushed a commit that referenced this issue Apr 15, 2024
add missing parameters in custompwdfield doc (#864)
14d94b0
davidcoutadeur pushed a commit that referenced this issue Apr 15, 2024
clean default values in changecustompwdfield (#864)
188cfb7
davidcoutadeur pushed a commit that referenced this issue Apr 16, 2024
improve code readibility (#864)
a06b98d
davidcoutadeur pushed a commit that referenced this issue Apr 16, 2024
remove useless check at for entropy page (#830, #864)
1a9af4c
davidcoutadeur pushed a commit that referenced this issue Apr 16, 2024
always consider checkentropy as an available action (#830, #864)
8f61eeb
davidcoutadeur pushed a commit that referenced this issue Apr 16, 2024
remove useless test (already done in ltb-ldap project) (#864)
af9c129
davidcoutadeur pushed a commit that referenced this issue Apr 16, 2024
adapt changecustompwdfield.tpl to bootstrap 5.3 upgrade (#864)
da58deb
@davidcoutadeur
Copy link
Author

I have tested extensively the feature. The only bug I encounter sometimes is that the field that is modified is not the custompwdfield, but the userPassword. I suspect there is maybe a wrong redirection to index.php at some point, but I can't figure out where is the problem. (and can't reproduce)

I write it here in case we reproduce one day the issue.

@markus-96
Copy link
Contributor

markus-96 commented Apr 17, 2024
edited

maybe it is because of action="#" in changecustompwd.tpl... I dont know if &custompwdindex=N is also submitted there, but should be. Maybe changing action="#" to action="" (although this SHOULD not have an impact) and puting hidden form fields that contain the current number and action would make it more stable..

<form action="" method="post">
    <input type="hidden" name="custompwdindex" value="N">    [ N would have to be set dynamically in the template ]
    <input type="hidden" name="action" value="changecustompwdfield">
    [... the current form ...]
</form>

I do not have time to test this right now, only wanted to share (and also not forget) my thoughts on this.

@davidcoutadeur
Copy link
Author

maybe it is because of action="#" in changecustompwd.tpl... I dont know if &custompwdindex=N is also submitted there, but should be. Maybe changing action="#" to action="" (although this SHOULD not have an impact) and puting hidden form fields that contain the current number and action would make it more stable..

<form action="" method="post">
    <input type="hidden" name="custompwdindex" value="N">    [ N would have to be set dynamically in the template ]
    <input type="hidden" name="action" value="changecustompwdfield">
    [... the current form ...]
</form>

I do not have time to test this right now, only wanted to share (and also not forget) my thoughts on this.

Thank you for your suggestions. I'll give this a look. Anyway, could you do a final check (and test) that everything in the PR #865 is ok for you ? This is one of the last issues before we can release 1.6.0.

davidcoutadeur pushed a commit that referenced this issue Apr 17, 2024
ability to change custom password fields, developped by @markus-96 (#864
af0e016 
)
davidcoutadeur pushed a commit that referenced this issue Apr 17, 2024
fix title underlining in doc (#864)
fc78c54
davidcoutadeur pushed a commit that referenced this issue Apr 17, 2024
fix change_password() call in changecustompwdfield (#864)
a796bea
davidcoutadeur pushed a commit that referenced this issue Apr 17, 2024
fix check_password call in check_password_strength function (#864)
eeac7d7
davidcoutadeur pushed a commit that referenced this issue Apr 17, 2024
improve custom password field documentation (#864)
bff7452
davidcoutadeur pushed a commit that referenced this issue Apr 17, 2024
add new custom password parameters in default configuration file (#864)
f5a0b82
davidcoutadeur pushed a commit that referenced this issue Apr 17, 2024
add missing parameters in custompwdfield doc (#864)
8caaef6
davidcoutadeur pushed a commit that referenced this issue Apr 17, 2024
clean default values in changecustompwdfield (#864)
5ed1f69
davidcoutadeur pushed a commit that referenced this issue Apr 17, 2024
isolate policy parameter: pwd_unique_across_custom_password_fields (#864
ad8878f 
)
davidcoutadeur pushed a commit that referenced this issue Apr 17, 2024
fix tests (new param pwd_unique_across_custom_password_fields) (#864)
c50e4ed
davidcoutadeur pushed a commit that referenced this issue Apr 17, 2024
add documentation for prehook / posthook in custompwdfield (#864)
b5d1cee
davidcoutadeur pushed a commit that referenced this issue Apr 17, 2024
improve code readibility (#864)
1f14448
davidcoutadeur pushed a commit that referenced this issue Apr 17, 2024
remove useless check at for entropy page (#830, #864)
b801203
davidcoutadeur pushed a commit that referenced this issue Apr 17, 2024
always consider checkentropy as an available action (#830, #864)
8e39d11
davidcoutadeur pushed a commit that referenced this issue Apr 17, 2024
remove useless test (already done in ltb-ldap project) (#864)
b67e2b1
davidcoutadeur pushed a commit that referenced this issue Apr 17, 2024
adapt changecustompwdfield.tpl to bootstrap 5.3 upgrade (#864)
d42b9bc
davidcoutadeur pushed a commit that referenced this issue Apr 17, 2024
improve condition for testing check_password_strength (#864)
c410824
davidcoutadeur pushed a commit that referenced this issue Apr 17, 2024
ability to change custom password fields, developped by @markus-96 (#864
a6ed13f 
)
davidcoutadeur pushed a commit that referenced this issue Apr 17, 2024
various refactoring around changecustompasswordfield feature (#864)
ea31808 
- fix change_password() call in changecustompwdfield
- fix check_password call in check_password_strength function
- improve custom password field documentation
- add new custom password parameters in default configuration file
- add missing parameters in custompwdfield doc
- clean default values in changecustompwdfield
- isolate policy parameter: pwd_unique_across_custom_password_fields
- fix tests (new param pwd_unique_across_custom_password_fields)
- add documentation for prehook / posthook in custompwdfield
- improve code readibility
- remove useless check for entropy page (#830, #864)
- always consider checkentropy as an available action (#830, #864)
- remove useless test (already done in ltb-ldap project)
- adapt changecustompwdfield.tpl to bootstrap 5.3 upgrade
- improve condition for testing check_password_strength
davidcoutadeur pushed a commit that referenced this issue Apr 17, 2024
@davidcoutadeur
ability to change custom password fields, developped by @markus-96 (#864
32d255d 
)
davidcoutadeur pushed a commit that referenced this issue Apr 17, 2024
@davidcoutadeur
various refactoring around changecustompasswordfield feature (#864)
e458c7e 
- fix change_password() call in changecustompwdfield
- fix check_password call in check_password_strength function
- improve custom password field documentation
- add new custom password parameters in default configuration file
- add missing parameters in custompwdfield doc
- clean default values in changecustompwdfield
- isolate policy parameter: pwd_unique_across_custom_password_fields
- fix tests (new param pwd_unique_across_custom_password_fields)
- add documentation for prehook / posthook in custompwdfield
- improve code readibility
- remove useless check for entropy page (#830, #864)
- always consider checkentropy as an available action (#830, #864)
- remove useless test (already done in ltb-ldap project)
- adapt changecustompwdfield.tpl to bootstrap 5.3 upgrade
- improve condition for testing check_password_strength
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@davidcoutadeur davidcoutadeur

Labels
enhancement
Projects
None yet
Milestone
1.6.0
2 participants
@davidcoutadeur @markus-96