0004774: password change using sha256-crypt/sha512-crypt with OpenLDAP backend) - SOGo

ID	Project	Category	View Status	Date Submitted	Last Update

0004774	SOGo	Backend General	public	2019-07-04 14:00	2019-07-13 07:52

Reporter	markus435425	Assigned To
Priority	normal	Severity	minor	Reproducibility	always
Status	new	Resolution	open
Platform	[Server] Linux	OS	RHEL/CentOS	OS Version	7

Summary	0004774: password change using sha256-crypt/sha512-crypt with OpenLDAP backend)
Description	The fix that has been implemented for this issue [1] has been reverted in a later commit [2]. As far as I can tell, openldap does still require the {crypt} prefix. This has been tested using debian 9.9 and slapd 2.4.44. What exactly was the reason to revert the fix? regards [1] https://sogo.nu/bugs/view.php?id=4137 [2] https://github.com/inverse-inc/sogo/commit/b0e59f9ac99f56f3212660659a2e7b37d9afd4ad#diff-3def561ac819d0cad0891746f3f84a2a
Steps To Reproduce	(Taken from Bug 0004137 as it is still present) 1) Use an OpenLDAP authentication backend. 2) Configure: userPasswordAlgorithm = "sha512-crypt"; SOGoPasswordChangeEnabled = "YES"; 3) Login 4) Change password 5) Logout ... now you can't login again.
Tags	No tags attached.

Date Modified	Username	Field	Change
2019-07-04 14:00	markus435425	New Issue
2019-07-13 07:52	Eslam.Basyouni	Note Added: 0013669

Eslam.Basyouni 2019-07-13 07:52 reporter ~0013669	i have the same problem where i have freeipa as my ldap and i can change password from sogo but when i log out and try to log in it's not work but i must pust old password this mean that the password didn't change