Ticket 417 - RFE - forcing passwordmustchange attribute by non-cn=directory manager
RFE Description: Allow users, other than the root DN, to be able to reset passwords
and force change. Currently only root DN can perform this action.
Fix Description: Now someone can reset a password and "force change after reset" with
any account that is not same as the account that's being changed. So
if you have permission to change the password of a different entry,
then "force change after reset" will be applied.
Note: Other ldap vedors behave this exact same way.
Also did some code cleanup.
https://fedorahosted.org/389/ticket/417
Reviewed by: Noriko(Thanks!)