36f0d05 Ticket 47970 - Account lockout attributes incorrectly updated after failed SASL Bind

Authored and Committed by mreynolds 9 years ago
    Ticket 47970 - Account lockout attributes incorrectly updated after failed SASL Bind
    
    Bug Description:   When a SASL bind fails, the target DN is not set. If password policy
                       account lockout is configured, it attempts to update the password retry
                       count on the dn ("") - which is the Root DSE entry, not a user entry.
    
                       This also confuses the COS plugin, and it incorrectly triggers a COS
                       cache rebuild after the failed login.
    
    Fix Description:  Do not update the password retry counters if it is a failed SASL bind.
    
    https://fedorahosted.org/389/ticket/47970
    
    Reviewed by: nhosoi(Thanks!)
    
    (cherry picked from commit 17e79688e05908f7fff319bdeb5167cbeaaf922c)
    
        
file modified
+10 -8