search

apache / cloudstack

Apache CloudStack is an opensource Infrastructure as a Service (IaaS) cloud computing platform
https://cloudstack.apache.org/
Apache License 2.0
2.11k stars 1.11k forks source link

Cloudstack shouldn't allow to change a user's password if the user is of saml and ldap from cloudstack #9933

Open kiranchavala opened 1 week ago

kiranchavala commented 1 week ago

ISSUE TYPE

Bug/Improvement request

COMPONENT NAME

Component: Improvement, UI,Bug

CLOUDSTACK VERSION

Cloudstack version 4.19.1.x

SUMMARY

Cloudstack shouldn't allow to change a user's password if the user is of saml and ldap from cloudstack

Steps to reproduce the issue

  1. Have a cloudstack environment with Ldap and saml enabled

  2. Make sure the ldap user and saml users are imported with a user role

  3. Navigate to a ldap user /saml user , or login as a ldap/user. there is an option to change the password

Screenshot 2024-11-15 at 1 26 06 PM

Screenshot 2024-11-15 at 1 27 48 PM

Previously Cloudstack didn't allow to change the password of ldap or a small account

Screenshot 2024-11-15 at 1 32 39 PM

Expected behaviour

The update user API call shouldn't allow to change the password for ldap/saml user

https://cloudstack.apache.org/api/apidocs-4.19/apis/updateUser.html

Cloudstack shouldn't allow to change a user's password if the user is of saml and ldap from cloudstack

Cloudstack should throw an exception message to contact the administrator