base: check password comply with authentication policy on change own password action
I'm wondering how to fix this issue:
login_account_provider.analyzePasswordto return True (or False) when the method is not found
- adding a default
Login_analyzePasswordreturning True in
- a combination of both previous proposal
Oh you are right, this looks like a mistake. Because
analyzePasswordis part of the login interface, it seems logical to consider that password is valid when there is no authentication policy, so the first suggestion, returning an empty list when no type-based method, looks good. Adding a default
Login_analyzePasswordseems a bit more complex because we'll have to take care of skin folder ordering.
Do you agree ? let me know if you want me to make these changes.
Seems fine. Don't bother about this, I'll do the fix.