Closed T0mWz closed 1 year ago
for password creation this code needs to be used: https://github.com/owncloud/guests/blob/84ea22147750b73cd957b2ff013356d4e62fec3a/lib/Controller/UsersController.php#L175-L181
for password creation this code needs to be used: https://github.com/owncloud/guests/blob/84ea22147750b73cd957b2ff013356d4e62fec3a/lib/Controller/UsersController.php#L175-L181
Um, sorry I mis your point? My user is logged in via an OIDC provider. There isn't a local user account here, configured with a password. The Password Policy should not hook in here, like with Shibboleth or an LDAP integration.
When creating a new user in owncloud using the openid connect auto provisioning feature a valid password has to be set. Password policy app can help to create a valid password as we do with guests ....
When creating a new user in owncloud using the openid connect auto provisioning feature a valid password has to be set. Password policy app can help to create a valid password as we do with guests ....
How is a valid password set? I have quite the same config as described here; https://github.com/owncloud/openidconnect#setup-auto-provisioning-mode
I can create an user by forehand, with the correct backend and a valid password, but then it isn't auto provisioning anymore.
See also not an option in the Password Policy App, next of the password requirements.
Can extend the app that it will generate a password when the user will be provisioned by the OIDC app. But tja, I see OIDC as an external identifier like Shibboleth or LDAP. Where a session token is provided and never a password...
This is something we developers need to change in the opening connect app.
Maybe this helps too regarding this issue; https://github.com/owncloud/core/pull/40512
Hmm, thought at first to just completely disable the app, but then nothing can be set any policy for public links either. So that's a bit of a bummer. So skipping the password policy for token based auth seems to me the best way to go.
@T0mWz please have a look at #282 - this should fix this issue. THX
When you have the Password Policy App enabled for local accounts and try to log in via OIDC, you will hit this password policy.
Steps to reproduce
Expected behaviour
I think you can guess what I should expect š
Actual behaviour
Config ownCloud 10.9.1 openidconnect: 2.1.0 password_policy: 2.1.3