Administrative Password Reset

[GoogleCodeExporter]

This is an enhancement request. We have added some customization to help add a 
feature to allow administrative password reset in the PWM admin "User 
Information" page.

Codes and SVN diff is given below against r209

What steps will reproduce the problem?
1. PWM admin is not able to reset user password

What is the expected output? What do you see instead?
PWM admin is able to reset user password inside "User Information"

What version of PWM are you using?
PWM 1.5.5

What ldap directory and version are you using?
SUN Directory Server 6.3

Please paste any error log messages below:

Original issue reported on code.google.com by anj...@gmail.com on 27 Jul 2011 at 12:31

Attachments:

• r209.patch
• Display.properties
• AdminChangeUserPasswordServlet.java
• userinformation.jsp
• resetpassword.jsp
• web.xml

[GoogleCodeExporter]

Excelent!  We will merge this code in at the next opportunity.  Thanks for your 
contribution!

Original comment by jrivard on 27 Jul 2011 at 7:15

• Changed state: Accepted
• Added labels: Type-Enhancement
• Removed labels: Type-Help

[GoogleCodeExporter]

I had found out that I had to do more code changes to suit my requirement.

Heres my use case:
A selected group of privileged users i.e. helpdesk can reset user passwords but 
they should not be PWM admin.

I have created an additional module "Administrative Password Reset" with the 
ability to grant permission to use Admin Password Reset feature based on a ldap 
query match string.

I have also moved my codes from user information page to a new 
/admin/ResetPassword page to perform password reset.

The Reset Password page has the ability to display the list of user attributes 
for verification purposes based on whats settings in the Password Reset module.

Note however that Admin Password Reset will overrides any PWM password 
policies. Reason is that the password policies validation codes is catered more 
towards the logined user. Hence to minimize extensive code changes.

Attached SVN diff against r209.

Original comment by anj...@gmail.com on 1 Aug 2011 at 7:09

Attachments:

• r209_v2.patch
• AuthorizationFilterResetPassword.java
• Configuration.java
• Display.properties
• Message.java
• Message.properties
• PwmSetting.java
• PwmSetting.properties
• Permission.java
• PwmConstants.java
• AdminChangeUserPasswordServlet.java
• UserHistory.java
• UserStatusHelper.java
• index.jsp
• resetpassword.jsp

[GoogleCodeExporter]

continuing from my above post...

Original comment by anj...@gmail.com on 1 Aug 2011 at 7:10

Attachments:

• web.xml

[GoogleCodeExporter]

Excellent..  I was starting to look at this and was having similar thoughts.  I 
will check this out soon.

Original comment by jrivard on 1 Aug 2011 at 7:11

[GoogleCodeExporter]

Checked updates into svn revision 216.

I made quite a few changes; the most obvious is that I've renamed the module to 
"Helpdesk" and moved it to /pwm/private.  I also added intruder unlock and 
fixed up some of the history logging.

Despite the changes, I thank you for a most excellent patch.  It looked pretty 
good as it was, I just wanted to future-proof it a bit :)

Thanks !

Original comment by jrivard on 4 Aug 2011 at 2:08

[GoogleCodeExporter]

Original comment by jrivard on 13 Aug 2011 at 4:55

• Changed state: Done