Canonical SSO provider

APIUser has no password policy

Bug #1213133 reported by Michael Foord on 2013-08-16

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	Canonical SSO provider	Triaged	Low	Unassigned

Bug Description

We have implemented password policies for SSO users. API users have no password policies. Passwords are set through APIUser.set_password which is used from the admin forms (called in APIUserAdmin.save_model).

Hooking this up (as a field validator in APIUserAdminForm) to use validate_password_policy would be straightforward. We would also need a custom validator for APIUsers. (Currently validators assume the "account" field is an identityprovider.models.Account and this would break that assumption.)

Tags:

Canonical ISD bug wrangler (isd-bug-wrangler) on 2013-08-16

Changed in canonical-identity-provider:
status:	New → Triaged

Dave Morley (davmor2) on 2013-08-22

Changed in canonical-identity-provider:
importance:	Undecided → Low
assignee:	nobody → Ubuntu One web team (ubuntuone-web)
tags:	added: u1-by-dev u1-on-dev

Curtis Hovey (sinzui) on 2014-11-12

Changed in canonical-identity-provider:
assignee:	Registry Administrators (registry) → nobody

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.