From 88f56586caf3488d9849bd658a68409e59559f3e Mon Sep 17 00:00:00 2001
From: Alex Harpin <development@landsofshadow.co.uk>
Date: Sat, 13 Jun 2015 13:04:17 +0100
Subject: vyatta-cfg-system: missing encrypted-password breaks user config node

The fix for bug #557 now allows the encrypted-password Authentication
node to be deleted again, but this causes the config to fail on reboot,
leaving the user login node empty.

This fix checks for an empty / missing encrypted-password node on
reboot / config reload, either creating a new node or replacing the
existing one and assigning it the value of "!".  This has the same
effect as the fix for bug #336, allowing the user to be set as only
using RSA based logins.

Bug #573 http://bugzilla.vyos.net/show_bug.cgi?id=573
---
 templates/system/login/user/node.def | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

(limited to 'templates')

diff --git a/templates/system/login/user/node.def b/templates/system/login/user/node.def
index caa53f1b..451cc078 100644
--- a/templates/system/login/user/node.def
+++ b/templates/system/login/user/node.def
@@ -4,8 +4,10 @@ help: User account information
 
 syntax:expression: exec "/opt/vyatta/sbin/vyatta_check_username.pl $VAR(@)"
 
+commit:expression: $VAR(@) == "" ||
+		   $VAR(authentication/plaintext-password) != "" ||
+		   $VAR(authentication/plaintext-password/@) = ""
+
 commit:expression: $VAR(@) == "" ||
 		   $VAR(authentication/encrypted-password) != "" ||
-                   ( $VAR(authentication/plaintext-password) != "" &&
-                     $VAR(authentication/plaintext-password/@) != "")
-                     ; "user password must be specified"
+		   $VAR(authentication/encrypted-password/@) = "!"
-- 
cgit v1.2.3