Re: Reset Password Not Resetting Must Change Password Flag

justin.isenhour Thu, 21 Dec 2017 15:10:36 -0800

I checked the core-connid logs, it looks like at the time that the update is
trigger the value is still set to true.


Internal Attribute:  mustChangePassword 
External Attribute: pwdReset
JXEL:  mustChangePassword == 1


17:56:42.080 DEBUG Enter: search(ObjectClass: __ACCOUNT__, EQUALS:
Attribute: {Name=aaimsKey, Value=[cc5567cb-2bf9-4e48-9567-cb2bf96e48c6]},
org.apache.syncope.core.provisioning.java.AsyncConnectorFacade$1@3d12b3c6,
OperationOptions:
{ATTRS_TO_GET:[aaimsKey,__PASSWORD__,mail,givenName,cn,__UID__,title,__ENABLE__,o,uid...]})
       
Method: search
17:56:42.081 DEBUG Enter: executeQuery(ObjectClass: __ACCOUNT__,
LdapFilter[nativeFilter: (aaimsKey=cc5567cb-2bf9-4e48-9567-cb2bf96e48c6);
entryDN: null],
org.identityconnectors.framework.impl.api.local.operations.SearchImpl$1@50738e95,
OperationOptions:
{ATTRS_TO_GET:[aaimsKey,__PASSWORD__,mail,givenName,cn,__UID__,title,__ENABLE__,o,uid...]})
  
Method: executeQuery
17:56:42.082 WARN  Reading passwords not supported      Method:
getAttributesToGet
17:56:42.082 WARN  Attribute __ENABLE__ of object class __ACCOUNT__ is not
mapped to an LDAP attribute  Method: getLdapAttribute
17:56:42.082 DEBUG Searching in
[ou=CommitedMembers,ou=people,dc=foodbuy,dc=com] with filter
(&(objectClass=foodbuyMemberAccount)(aaimsKey=cc5567cb-2bf9-4e48-9567-cb2bf96e48c6))
and SearchControls: {returningAttributes=[aaimsKey, cn, givenName, mail,
middleName, o, organizationDescription, organizationSourceSystemId,
pwdReset, sn, status, title, uid, userPassword], scope=SUBTREE}    Method:
doSearch
17:56:42.088 WARN  Attribute __ENABLE__ of object class __ACCOUNT__ is not
mapped to an LDAP attribute  Method: getLdapAttribute
17:56:42.088 DEBUG Enter: {Uid=Attribute: {Name=__UID__,
Value=[[email protected]]}, ObjectClass=ObjectClass: __ACCOUNT__,
Attributes=[Attribute: {Name=__PASSWORD__,
Value=[org.identityconnectors.common.security.GuardedString@204e249b]},
Attribute: {Name=aaimsKey, Value=[cc5567cb-2bf9-4e48-9567-cb2bf96e48c6]},
Attribute: {Name=cn, Value=[20, user]}, Attribute:
{Name=organizationDescription, Value=[HMSHost]}, Attribute: {Name=__UID__,
Value=[[email protected]]}, Attribute: {Name=__ENABLE__, Value=[]},
Attribute: {Name=o, Value=[SEC-2013-00090]}, Attribute: {Name=uid,
Value=[[email protected]]}, Attribute: {Name=status, Value=[active]},
Attribute: {Name=middleName, Value=[]}, Attribute: {Name=mail,
Value=[[email protected]]}, Attribute: {Name=organizationSourceSystemId,
Value=[5000]}, Attribute: {Name=__NAME__,
Value=[aaimsKey=cc5567cb-2bf9-4e48-9567-cb2bf96e48c6,ou=CommitedMembers,ou=people,dc=foodbuy,dc=com]},
Attribute: {Name=title, Value=[tester]}, Attribute: {Name=pwdReset,
Value=[true]}, Attribute: {Name=sn, Value=[20]}, Attribute: {Name=givenName,
Value=[user]}], Name=Attribute: {Name=__NAME__,
Value=[aaimsKey=cc5567cb-2bf9-4e48-9567-cb2bf96e48c6,ou=CommitedMembers,ou=people,dc=foodbuy,dc=com]}}
      
Method: handle
17:56:42.089 DEBUG Return: true Method: handle
17:56:42.089 DEBUG Enter: {Uid=Attribute: {Name=__UID__,
Value=[[email protected]]}, ObjectClass=ObjectClass: __ACCOUNT__,
Attributes=[Attribute: {Name=__PASSWORD__,
Value=[org.identityconnectors.common.security.GuardedString@204e249b]},
Attribute: {Name=aaimsKey, Value=[cc5567cb-2bf9-4e48-9567-cb2bf96e48c6]},
Attribute: {Name=cn, Value=[20, user]}, Attribute:
{Name=organizationDescription, Value=[HMSHost]}, Attribute: {Name=__UID__,
Value=[[email protected]]}, Attribute: {Name=__ENABLE__, Value=[]},
Attribute: {Name=o, Value=[SEC-2013-00090]}, Attribute: {Name=uid,
Value=[[email protected]]}, Attribute: {Name=status, Value=[active]},
Attribute: {Name=middleName, Value=[]}, Attribute: {Name=mail,
Value=[[email protected]]}, Attribute: {Name=organizationSourceSystemId,
Value=[5000]}, Attribute: {Name=__NAME__,
Value=[aaimsKey=cc5567cb-2bf9-4e48-9567-cb2bf96e48c6,ou=CommitedMembers,ou=people,dc=foodbuy,dc=com]},
Attribute: {Name=title, Value=[tester]}, Attribute: {Name=pwdReset,
Value=[true]}, Attribute: {Name=sn, Value=[20]}, Attribute: {Name=givenName,
Value=[user]}], Name=Attribute: {Name=__NAME__,
Value=[aaimsKey=cc5567cb-2bf9-4e48-9567-cb2bf96e48c6,ou=CommitedMembers,ou=people,dc=foodbuy,dc=com]}}
      
Method: handle
17:56:42.089 DEBUG Return: false        Method: handle
17:56:42.089 DEBUG Return       Method: executeQuery
17:56:42.090 DEBUG Return: null Method: search
17:56:42.101 DEBUG Enter: update(ObjectClass: __ACCOUNT__, Attribute:
{Name=__UID__, Value=[[email protected]]}, [Attribute: {Name=__PASSWORD__,
Value=[org.identityconnectors.common.security.GuardedString@8ebfb676]},
Attribute: {Name=aaimsKey, Value=[cc5567cb-2bf9-4e48-9567-cb2bf96e48c6]},
Attribute: {Name=organizationDescription, Value=[HMSHost]}, Attribute:
{Name=cn, Value=[20, user]}, Attribute: {Name=__ENABLE__, Value=[true]},
Attribute: {Name=o, Value=[SEC-2013-00090]}, Attribute: {Name=uid,
Value=[[email protected]]}, Attribute: {Name=status, Value=[active]},
Attribute: {Name=middleName, Value=[]}, Attribute: {Name=mail,
Value=[[email protected]]}, Attribute: {Name=organizationSourceSystemId,
Value=[5000]}, Attribute: {Name=title, Value=[tester]}, Attribute:
{Name=pwdReset, Value=[true]}, Attribute: {Name=sn, Value=[20]}, Attribute:
{Name=givenName, Value=[user]}], null)      Method: update
17:56:42.102 DEBUG Enter: update(ObjectClass: __ACCOUNT__, Attribute:
{Name=__UID__, Value=[[email protected]]}, [Attribute: {Name=__PASSWORD__,
Value=[org.identityconnectors.common.security.GuardedString@8ebfb676]},
Attribute: {Name=aaimsKey, Value=[cc5567cb-2bf9-4e48-9567-cb2bf96e48c6]},
Attribute: {Name=organizationDescription, Value=[HMSHost]}, Attribute:
{Name=cn, Value=[20, user]}, Attribute: {Name=__ENABLE__, Value=[true]},
Attribute: {Name=o, Value=[SEC-2013-00090]}, Attribute: {Name=uid,
Value=[[email protected]]}, Attribute: {Name=status, Value=[active]},
Attribute: {Name=middleName, Value=[]}, Attribute: {Name=mail,
Value=[[email protected]]}, Attribute: {Name=organizationSourceSystemId,
Value=[5000]}, Attribute: {Name=title, Value=[tester]}, Attribute:
{Name=pwdReset, Value=[true]}, Attribute: {Name=sn, Value=[20]}, Attribute:
{Name=givenName, Value=[user]}], OperationOptions: {})      Method: update
17:56:42.102 DEBUG Searching for object [email protected] of class
__ACCOUNT__   Method: findEntryDN
17:56:42.103 DEBUG Searching in
[ou=CommitedMembers,ou=people,dc=foodbuy,dc=com] with filter
(&(objectClass=foodbuyMemberAccount)([email protected])) and
SearchControls: {returningAttributes=[uid], scope=SUBTREE}      Method:
doSearch
17:56:42.112 WARN  Attribute __ENABLE__ of object class __ACCOUNT__ is not
mapped to an LDAP attribute  Method: getLdapAttribute
17:56:42.118 DEBUG Modifying LDAP group memberships: removing [], adding []    
Method: modifyLdapGroupMemberships
17:56:42.119 DEBUG Modifying POSIX group memberships: removing [], adding []   
Method: modifyPosixGroupMemberships
17:56:42.120 DEBUG Return: Attribute: {Name=__UID__,
Value=[[email protected]]}  Method: update
17:56:42.120 DEBUG Return: Attribute: {Name=__UID__,
Value=[[email protected]]}  Method: update
17:56:42.126 DEBUG Enter: search(ObjectClass: __ACCOUNT__, EQUALS:
Attribute: {Name=aaimsKey, Value=[[email protected]]},
org.apache.syncope.core.provisioning.java.AsyncConnectorFacade$1@40bdcc12,
OperationOptions:
{ATTRS_TO_GET:[aaimsKey,__PASSWORD__,mail,givenName,cn,__UID__,title,__ENABLE__,o,uid...]})
   
Method: search
17:56:42.127 DEBUG Enter: executeQuery(ObjectClass: __ACCOUNT__,
LdapFilter[nativeFilter: ([email protected]); entryDN: null],
org.identityconnectors.framework.impl.api.local.operations.SearchImpl$1@547f4f54,
OperationOptions:
{ATTRS_TO_GET:[aaimsKey,__PASSWORD__,mail,givenName,cn,__UID__,title,__ENABLE__,o,uid...]})
      
Method: executeQuery
17:56:42.128 WARN  Reading passwords not supported      Method:
getAttributesToGet
17:56:42.128 WARN  Attribute __ENABLE__ of object class __ACCOUNT__ is not
mapped to an LDAP attribute  Method: getLdapAttribute
17:56:42.128 DEBUG Searching in
[ou=CommitedMembers,ou=people,dc=foodbuy,dc=com] with filter
(&(objectClass=foodbuyMemberAccount)([email protected])) and
SearchControls: {returningAttributes=[aaimsKey, cn, givenName, mail,
middleName, o, organizationDescription, organizationSourceSystemId,
pwdReset, sn, status, title, uid, userPassword], scope=SUBTREE}   Method:
doSearch
17:56:42.134 DEBUG Return       Method: executeQuery
17:56:42.134 DEBUG Return: null Method: search


--
Sent from: http://syncope-user.1051894.n5.nabble.com/

Re: Reset Password Not Resetting Must Change Password Flag

Reply via email to