local password policy conflicts with LDAP password policy
Environment
LemonLDAP::NG version: >= 2.0.6
Operating system: any
Web server: any
Summary
For reference, the new local password policy has been released in #993 (closed) Here are some issues I noticed:
-
it could be a good thing to have a enable / disable option for the local policy.
-
in particular, when doing a migration from 1.9, I faced an incompatibility with the default "authorized special chars" rule of the local password policy, the latter being enabled by default. For example, the pipe (|) was allowed by my LDAP ppolicy, but is by default unauthorized by the local policy. Could we have a special value allowing any character? And this value should be defined as default value?
-
The regex in Manager does not allow all special characters. For example, these ones are ok:
! @ # $ % & * ( ) - = + [ ] { } ; : , . / ? | < > ^ ~ " '
`, but all these ones are rejected:§ ù µ ¨ £ é è ç à °
-
improvement only: it could be nice to define sets of password policies, linked to a rule used to define which one is applied.