Luke Taylor (Migrated from SEC-1331) said:
For such users, the namespace would generate a random password value, preventing authentication as those users. This makes sense in situations where the service is only used to load supplementary post-authentication data (user authorities). Typically this is the case with CAS, OpenID, Pre-Authentication.
Luke Taylor said:
Updated schema and parser to allow empty password, generating a random one internally. Modified OpenID sample to use the alternative syntax.
This issue supersedes #1576