bernardodemarco opened a new pull request, #9999: URL: https://github.com/apache/cloudstack/pull/9999
### Description Currently, CloudStack does not support dual authentication methods for SAML users. If their source is equal to `SAML` or `SAMLDISABLED`, then they're not able to login with a username and password. However, when executing the `updateUser` API to update their password, the password is changed in the database, even though username/password authentication is unsupported for these users. Regarding LDAP users, password updates directly through CloudStack should also not be allowed. Therefore, this PR addresses these issues by providing a clear error message when SAML or LDAP users attempt to change their password via the `updateUser` API. --- Fixes #9933 ### Types of changes - [ ] Breaking change (fix or feature that would cause existing functionality to change) - [ ] New feature (non-breaking change which adds functionality) - [X] Bug fix (non-breaking change which fixes an issue) - [ ] Enhancement (improves an existing feature and functionality) - [ ] Cleanup (Code refactoring and cleanup, that may add test cases) - [ ] build/CI - [ ] test (unit or integration test code) ### Feature/Enhancement Scale or Bug Severity #### Bug Severity - [ ] BLOCKER - [ ] Critical - [ ] Major - [X] Minor - [ ] Trivial ### Screenshots (if appropriate):  ### How Has This Been Tested? - Verified that attempting to update a SAML or LDAP user's password results in an appropriate error message. - Verified that attempting to update a `SAMLDISABLED` user's password also triggers the error message. - Verified that non-SAML/LDAP users can update their passwords without any issues. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
