freeipa/daemons
Martin Kosek c41b782bc5 Revert "Check for password expiration in pre-bind"
This reverts commit bfdbd3b6ad.

Forceful validation of password expiration date in a BIND pre-callback
breaks LDAP password change extended operation as the password change
is only allowed via authenticated (bound) channel. Passwords could be
only changed via kadmin protocol. This change would thus break
LDAP-only clients and Web UI password change hook.

This patch will need to be revisited so that unauthenicated corner
cases are also revisited.

https://fedorahosted.org/freeipa/ticket/1539
2014-06-10 08:42:03 +02:00
..
ipa-kdb Restore krbCanonicalName handling 2014-05-30 09:48:05 +02:00
ipa-otpd Move ipa-otpd socket directory 2014-02-11 17:36:19 +01:00
ipa-sam ipa-sam: cache gid to sid and uid to sid requests in idmap cache 2014-03-12 12:19:06 +01:00
ipa-slapi-plugins Revert "Check for password expiration in pre-bind" 2014-06-10 08:42:03 +02:00
configure.ac Add OTP last token plugin 2014-02-21 10:26:02 +01:00
ipa-version.h.in Fix typos 2011-09-07 13:20:42 +02:00
Makefile.am Add the krb5/FreeIPA RADIUS companion daemon 2013-05-17 09:30:51 +02:00