occ user:expire-password not working, when expiry is not explicitly enabled

[patrickjahns]

During smoke testing the release tarball, I noticed a confusion.

After installing and enabling password_policy app - the occ command occ user:expire-password is available.
Withou further configuration, I have used the occ user:expire-password user1 - but confusingly user1 was still able to login.

Only when checking the top expiry box and using the occ command - the user was forced to change his password on login

[PVince81]

@pmaier1 something to mention in docs or release notes ? known issue ?

[PVince81]

also to discuss: what is the expected behavior ?

1. occ command fails "password expiration is not enabled": easy fix
   or
2. expiration works anyway: more involved fix as we need to make expiration system work despite expiration being disabled

[pmaier1]

1. does not make much sense as the sysadmin could enable it via occ app:config and execute the occ command again, right?

The separation between oC admin and sysadmin is not perfect in this case but to avoid confusion I would go for 2.

[PVince81]

Estimate: 0.5-3md depending on what we find

[PVince81]

Assigning self to think about tech solution