Uploaded image for project: 'OpenIDM'
  1. OpenIDM
  2. OPENIDM-6394

Describe the new way that reauthentication logic is enforced

    Details

    • Target Version/s:
    • Story Points:
      3
    • Sprint:
      OpenIDM Sprint 72

      Description

      Based on OpenIDM-6325 and this PR

      Current password policies require that a user supply an existing (local) password.

      Users who connect via social auth do not have an existing local password (at least at first)

      Changes:

      new files:

      • in bin/defaults/script
        • customAuthz.js, populateAsManagedUser.js

      Chapter changes:

      • Policy Chapter
        • Review extensive changes in policy.js
        • Note change from re-auth-required policy to `'isProtected" : true` – can be used for more than passwords (e.g. new security questions)
      • Auth chapter
        • Review changes in authentication.json, at least for MANAGED_USER
        • Review MANAGED_USER code samples in other doc

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                Lana Lana Frost
                Reporter:
                Mike2 Mike Jang [X] (Inactive)
              • Votes:
                0 Vote for this issue
                Watchers:
                4 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: