Hi,
I am developing a plugin for FreeIPA (mostly to handle Postfix and virtual mailboxes/domains).
The thing is that I created an objectClass (postfixMailbox), where the user has the following attributes:
- mail - userPassword - mailQuota - active
I don’t know what are the requirements for the user to be able to choose his own password by logging into FreeIPA’s gui.
What I did was to add the inetOrgPerson and inetUser objectClasses, just to see if the user would be allowed to log in for changing password-purposes. Still no go.
These users are in a totally different container (every virtual domain is a container).
I also am not sure if I want these users to be like a normal user, but at the same time I want to be able to change their password.
Any tips on how to achieve something like this, besides using a command-line plugin?
Best,
Francis
Francis Augusto Medeiros-Logeay via FreeIPA-users wrote:
Hi,
I am developing a plugin for FreeIPA (mostly to handle Postfix and virtual mailboxes/domains).
The thing is that I created an objectClass (postfixMailbox), where the user has the following attributes:
- userPassword
- mailQuota
- active
I don’t know what are the requirements for the user to be able to choose his own password by logging into FreeIPA’s gui.
What I did was to add the inetOrgPerson and inetUser objectClasses, just to see if the user would be allowed to log in for changing password-purposes. Still no go.
These users are in a totally different container (every virtual domain is a container).
I also am not sure if I want these users to be like a normal user, but at the same time I want to be able to change their password.
Any tips on how to achieve something like this, besides using a command-line plugin?
These entries are not users according to IPA, so they cannot log into the UI. They are not in the IPA users container.
So you'll need to write something custom.
rob
On 21 Mar 2023, at 13:36, Rob Crittenden rcritten@redhat.com wrote:
Francis Augusto Medeiros-Logeay via FreeIPA-users wrote:
Hi,
I am developing a plugin for FreeIPA (mostly to handle Postfix and virtual mailboxes/domains).
The thing is that I created an objectClass (postfixMailbox), where the user has the following attributes:
- userPassword
- mailQuota
- active
I don’t know what are the requirements for the user to be able to choose his own password by logging into FreeIPA’s gui.
What I did was to add the inetOrgPerson and inetUser objectClasses, just to see if the user would be allowed to log in for changing password-purposes. Still no go.
These users are in a totally different container (every virtual domain is a container).
I also am not sure if I want these users to be like a normal user, but at the same time I want to be able to change their password.
Any tips on how to achieve something like this, besides using a command-line plugin?
These entries are not users according to IPA, so they cannot log into the UI. They are not in the IPA users container.
So you'll need to write something custom.
Thanks Rob.
What is interesting is that the `userPassword `field doesn’t show up on the “details” facet, only on the `add`. Do you know if there’s a way to make it editable?
Best,
Francis
rob
freeipa-users@lists.fedorahosted.org