I am using this backend to authenticate against my clients' Active
Directory servers. To protect against any future outages, I would like
to store the users' passwords in the auth_user table. I was able to
accomplish this by modifying _LDAPUser in the following ways:
* Pass in password parameter
* Call self._user.set_password(password) after the call to
get_or_create_user()
* Remove the call to self._user.set_unusable_password()
My questions for the group are as follows:
1. What are the downsides of doing this? I am aware of potential
syncing issues and the obvious security risk (e.g. if my server is
compromised, the users' passwords are at the mercy of SHA-256).
2. Is there a simpler method to accomplish this task, or should I
submit a patch with the appropriate settings variables?
I apologize in advance if this question has already been posed. The
only mention of saving passwords I found was a note at the end of the
user objects section of the compiled docs (
http://packages.python.org/
django-auth-ldap/#user-objects).
Thanks,
Clinton