Password history constraints not enforced via /v3/users/<user_id>/password path
Bug #1628692 reported by
Rodrigo Duarte
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Identity (keystone) |
Fix Released
|
Medium
|
Ron De Rose |
Bug Description
Differently from the /v3/user/<user_id> route [1], the /v3/user/
At [3] we are able to change a password that breaks the password history constraints
[1] https:/
[2] https:/
[3] http://
summary: |
- Password constraints not enforced via /v3/users/<user_id>/password path + Password history constraints not enforced via + /v3/users/<user_id>/password path |
Changed in keystone: | |
assignee: | nobody → Ron De Rose (ronald-de-rose) |
Changed in keystone: | |
importance: | Undecided → Medium |
status: | New → Confirmed |
Changed in keystone: | |
milestone: | none → newton-rc1 |
To post a comment you must log in.
Fix proposed to branch: master /review. openstack. org/379018
Review: https:/