Branch: refs/heads/2.1.0
Home:
https://github.com/tribe29/checkmk
Commit: 8457635f8c504ee14cd1ea990efd4a3b27fed6bb
https://github.com/tribe29/checkmk/commit/8457635f8c504ee14cd1ea990efd4a3b2…
Author: Hannes Rantzsch <hannes.rantzsch(a)tribe29.com>
Date: 2023-03-24 (Fri, 24 Mar 2023)
Changed paths:
A .werks/15188
M cmk/gui/plugins/openapi/endpoints/user_config.py
M cmk/gui/plugins/openapi/restful_objects/request_schemas.py
M cmk/utils/crypto/password.py
M tests/unit/cmk/gui/plugins/openapi/test_openapi_user.py
M tests/unit/cmk/test_cmkpasswd.py
M tests/unit/cmk/utils/crypto/test_password.py
M tests/unit/cmk/utils/crypto/test_password_hashing.py
Log Message:
-----------
15188 FIX setting empty user passwords via the REST API
Prior to this Werk it was possible to set empty passwords for users via
the REST API.
An empty password is not considered a valid password and now results in
a 400 error.
Note that this only affected the REST API, not the UI's User Management
nor it's Change Password functionality.
CMK-12264
Change-Id: I668a14b960f685b3e35baecfe427ac8ebc60475d