Gitiles
Code Review Sign In
gerrit.mcp.mirantis.com / salt-formulas / salt / f8f2a5928b0eaa331afdcff1bf896748ca2a6ee4
commitf8f2a5928b0eaa331afdcff1bf896748ca2a6ee4[log] [tgz]
authorDmitry Teselkin <dteselkin@mirantis.com>Wed Jul 31 16:22:01 2019 +0300
committerDmitry Teselkin <dteselkin@mirantis.com>Thu Aug 01 21:11:04 2019 +0300
treeaa51c2b475b7c41026652bcf242f236ba52953bc
parent2b0562395f37908197aefca688327e954310e755 [diff]
fix_last_password_change helper

This helper function updates last password change timestamp of a user(s).
It doesn't update password itself.

In case username (a list of usernames) passed as input to this function,
only these users might be affected.

If there is no input, then all the users in the system will be tried.

Regardless of how username(s) was/were get, all the following rules SHOULD
match in order to succeed:
* user ID MUST be >= 1000
* user's password from /etc/shadow MUST be '*'. This is an indicator that
  password is disabled for this user, and last password change timestamp
  can safely be updated.

If an account ID is < 1000 (system account) or a user have locked
password (that starts with exclamation mark) or have a valid password
string (even if it's an empty string) then last password change timestamp
won't be updated.

Change-Id: I426c5af790e8ca28e8ae4def010388096223e365
Related-Prod: PROD-29769
1 file changed
tree: aa51c2b475b7c41026652bcf242f236ba52953bc
  1. _engines/
  2. _modules/
  3. _returners/
  4. _runners/
  5. _states/
  6. debian/
  7. metadata/
  8. releasenotes/
  9. salt/
  10. tests/
  11. .gitignore
  12. .kitchen.yml
  13. CHANGELOG.rst
  14. LICENSE
  15. Makefile
  16. metadata.yml
  17. README.rst
  18. VERSION