No problem. The code is attached. It is just one python script, with configuration items on the top.
Please be reminded that this code is pretty rough and not well-tested as I can not find appropriate documents on how to use python kerberos module. Disclaim: This piece of code just works as a prototype, it is not well-tested, nor DOS attack prove at all, so it could potentially harm or totally destroy someone's authentication system. :( Thanks. --Gelen ________________________________ From: Rob Crittenden <rcrit...@redhat.com> To: Gelen James <hahaha_...@yahoo.com> Cc: "freeipa-de...@redhat.com" <freeipa-de...@redhat.com>; "firstname.lastname@example.org" <email@example.com> Sent: Wednesday, May 23, 2012 12:14 PM Subject: Re: [Freeipa-devel] I've done it by myself and it works -- Re: Feature request: Web UI for IPA users to reset their own expired passwords Gelen James wrote: > I've coded it with python-kerberos and it works. Pretty rough though. Is this something you'd be interested in contributing? rob > > --Gelen. > > ------------------------------------------------------------------------ > *From:* Gelen James <hahaha_...@yahoo.com> > *To:* "freeipa-de...@redhat.com" <freeipa-de...@redhat.com> > *Sent:* Sunday, May 20, 2012 2:22 AM > *Subject:* Feature request: Web UI for IPA users to reset their own > expired passwords > > The currently assumption is that all IPA users can login into Unix/Linux > machines to change their IPA password, or reset their expired password. > > But this is not available all the time, so a more general alternative -- > web UI -- will be more appreciated. The basic requirements are: > > 1, The web UI accept user's passwords, expired is also accepted. > 2, the authentication is based on IPA Kerberos. > > 3, authenticated regular IPA user can only reset his/her password only. > > 4, (bonus) authenticated admin users can alter other users' password as > well. > > > Thanks. > > --Gelen > > > > > > > _______________________________________________ > Freeipa-devel mailing list > freeipa-de...@redhat.com > https://www.redhat.com/mailman/listinfo/freeipa-devel
Description: Binary data
_______________________________________________ Freeipa-users mailing list Freeipafirstname.lastname@example.org https://www.redhat.com/mailman/listinfo/freeipa-users