Last modified: 2014-09-02 17:29:47 UTC
Steps I followed (three times now): 1) [[wikitech:Special:PasswordReset]] 2) Enter username and confirm 3) Wait for email, copy the temporary password 4) [[wikitech:Special:UserLogin]], enter username and paste password, ignore "token" field, check (or not) "Keep me logged in", submit I. Observed: I'm logged in and I proceed to the page to set a new password 5) Paste temporary password, enter new password two times, confirm II. Observed: I'm logged out and sent back to [[wikitech:Special:UserLogin]], with login error "Incorrect password entered. Please try again." I can't use the temporary password because it expired nor the new password because it wasn't set, so I have to start again from (1). III. Expected: the password is set and I proceed.
(In reply to comment #0) > I. Observed: I'm logged in and I proceed to the page to set a new password Well, not logged in, but the password is accepted and I'm asked to enter my new one to "finish login".
Sigh, I created a new account (at the cost of a couple hours spent fighting against the wiki's silliness, see bug 56535) and was now locked out of that too. It turns out that wikitech doesn't accept passwords with unicode characters which work fine on the WMF cluster; I now used a three-letter password and it worked. Let us know when we can use secure passwords on this wiki. (In reply to comment #0) > 5) Paste temporary password, enter new password two times, confirm Amended: "enter new password with some non-ASCII character" (no idea which ones); clarified summary.
Wikitech is the only wiki (iirc) backed by ldap authentication. I'm going to guess either the extension or the ldap server doesn't handle the non-ascii characters correctly. Does anyone in ops know what ldap server is used?
(In reply to Chris Steipp from comment #3) > Does anyone in ops know what ldap server is used? See e.g. bug 63717. which indicates opendj
It's opendj.