On Mon, 2014-07-21 at 16:39 +0200, Petr Vobornik wrote:
> On 14.7.2014 21:01, Nathaniel McCallum wrote:
> > The preexisting code would execute two steps. First, it would perform a
> > kinit. If the kinit failed, it would attempt to bind using the same
> > credentials to determine if the password we
On 14.7.2014 21:01, Nathaniel McCallum wrote:
The preexisting code would execute two steps. First, it would perform a
kinit. If the kinit failed, it would attempt to bind using the same
credentials to determine if the password were expired. While this method
is fairly ugly, it mostly worked in th
The preexisting code would execute two steps. First, it would perform a
kinit. If the kinit failed, it would attempt to bind using the same
credentials to determine if the password were expired. While this method
is fairly ugly, it mostly worked in the past.
However, with OTP this breaks. This is