Increased yunohost password policy prevents synapse from upgrading to 1.69

[eauchat]

Describe the bug

As it appears in this forum post, if someone sets up higher password policies for it's users, synapse fails to upgrade because it is not able to match the password policy of the server.

It would be great if synapse was able to match yunohost higher password policies, to avoid having this bug and for better security.

Context

• YunoHost version: 11.0.10.2
• I have access to my server: Through SSH, through the webadmin
• Are you in a special context or did you perform some particular tweaking on your YunoHost instance?: no
• Using, or trying to install package version/branch: 1.69

Steps to reproduce

On a server with synapse version 1.59, setup yunohost password policies to high: sudo yunohost settings set security.password.user.strength -v 3 Try to upgrade to version 1.69. You'll get the logs mentioned in the forum post linked above, synapse fails to upgrade.

Expected behavior

Synapse upgrades fine.

[Josue-T]

Well,

• firstly, this password is generated by the yunohost helper ynh_string_random, so it would be the work of this helper to fix this.
• and secondly, it's really not clean to create a yunohost user for the app, a solution was provided in https://github.com/YunoHost/yunohost/pull/977, but it still not merged and no other solution are provided for now so it was the only solution to fix the requirements.

[jukefr]

In the meantime is it viable to simply change the password manually with sudo passwd synapse to not have this be a problem on updates or would that break things ?

[utzer]

Also blocks installation, the password generated during install is only 8 characters and if you have set 13 to be the minimum the installation fails. So the password generated during install needs to be longer anyway.

Solution for now, set the minimum Password requirement to 8 characters before installing Synapse and always decrease the setting when updating.

[Josue-T]

Bixy ba packaging v2