django-openstack-auth

Keystone auth needs a way to propogate some error message based on some kind of configuration

Bug #1365458 reported by Mahesh Sawaiker on 2014-09-04

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	django-openstack-auth	Confirmed	Wishlist	Unassigned

Bug Description

We are using a password policy in ldap that locks accounts if they try authenticating with a wrong password more than certain number of times.

When an account is locked, the Horizon UI shows Invalid username/password.

Following is the change i made to get what I wanted, but we need something more generic and configurable (example easily allow user to know his password has expired, based on the response coming from the keystone client)

vim "/usr/lib/python2.6/site-packages/openstack_auth/backend.py" - changes on line 98 and 99

94 except (keystone_exceptions.Unauthorized,
95 keystone_exceptions.Forbidden,
96 keystone_exceptions.NotFound) as exc:
97 msg = _('Invalid user name or password.')
98 if exc.message == "Error, Account is locked":
99 msg = "Error, Account is locked contact the administrator"

Tags:

Dolph Mathews (dolph) on 2014-09-04

affects:

keystone → horizon

Gary W. Smith (gary-w-smith) on 2014-09-04

tags:

added: error-reporting keystone

Gary W. Smith (gary-w-smith) on 2014-09-04

affects:

horizon → django-openstack-auth

Revision history for this message

David Lyle (david-lyle) wrote on 2015-07-15:

The difficulty is that propagated messages are usually not localized.

Changed in django-openstack-auth:
importance:	Undecided → Wishlist

David Lyle (david-lyle) on 2017-01-31

Changed in django-openstack-auth:
status:	New → Confirmed

Report a bug

This report contains Public information

Everyone can see this information.

Duplicates of this bug

Bug #1365456

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.