[midPoint] Possibility to check Password validity?

Radovan Semancik radovan.semancik at evolveum.com
Thu May 22 17:37:42 CEST 2014 

Hi Alexander,

I'm afraid that the answer is again "no". MidPoint was not designed as 
an authentication server therefore we haven't considered such function. 
Provisioning system are relatively complex and therefore they are not 
ideal as high-performance authentication systems.

What we usually do is an LDAP server that contains all the midPoint 
users (provisioned by usual LDAP connector). And the you can check 
password against that LDAP server using usual BIND operation. This 
solution may seem slightly complex but it has many advantages such as 
performance, scalability and availability.

-- 

                                            Radovan Semancik
                                           Software Architect
                                              evolveum.com



On 05/22/2014 01:55 PM, Alexander Grzesik wrote:
>
> Just another question regaridng passwords.
>
> Is it possible to verify a user password via API, so check if a given 
> password matches the ones a user had stored?
>
> *Von:*midpoint-bounces at lists.evolveum.com 
> [mailto:midpoint-bounces at lists.evolveum.com] *Im Auftrag von *Pavol 
> Mederly
> *Gesendet:* Donnerstag, 22. Mai 2014 13:17
> *An:* midpoint at lists.evolveum.com
> *Betreff:* Re: [midPoint] Possibility to check Password validity?
>
> Hello Alexander,
>
> that's a meaningful request.
>
> Such feature is planned (see https://jira.evolveum.com/browse/MID-1876 
> - your scenario could be realized e.g. via setting "don't execute 
> changes" flag), unfortunately, it is not implemented yet and probably 
> will not be part of 3.0.
> Hopefully it will be in some of the maintenance/patch releases after 3.0.
>
> Best regards,
> Pavol
>
>     Hi,
>
>     is there a way to check if a password is valid according to the
>     Password Policy from the ModelClient before saving a user?
>
>     This would be helpful for us, as we create users from an external
>     application and store in midpoint and would like to provide a
>     validation in the GUI form.
>
>     Best Regards
>
>     Alexander
>
>
>
>
>     _______________________________________________
>
>     midPoint mailing list
>
>     midPoint at lists.evolveum.com  <mailto:midPoint at lists.evolveum.com>
>
>     http://lists.evolveum.com/mailman/listinfo/midpoint
>
>
>
> _______________________________________________
> midPoint mailing list
> midPoint at lists.evolveum.com
> http://lists.evolveum.com/mailman/listinfo/midpoint


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20140522/32aeb875/attachment.htm>

More information about the midPoint mailing list