Change Password bug
I notice that for normal login, users do not have to enter full email address as long as their url match their email address domain. This is made possible by setting up the virtual host in Admin Console.
However, this virtual host function seems unable to work when I check [Must change password]. User logging to Zimbra will get prompt to enter a new password twice. However, Zimbra will keep prompting that the username or password is incorrect despite entering every field correctly. Unless of course, user enter their full email address!
Can someone verify if this is also the case for their zimbra setup?
This sounds like something I have encountered, possibly on 5.0.16. But the bug I filed was marked worksforme, and I've upgraded since then. Would it be possible to upgrade and retest? 5.0 prior to .18 has at least one security bug you'd like to get rid of anyway.
EDIT: This is the bug I was referring to: https://bugzilla.zimbra.com/show_bug.cgi?id=38557
Bug 38557 seems to be confusing redirect that happen with secured login and it still works. My issue is that it refuse to accept change of password nor login until user figure out that they have to enter full email address instead of their usual login name. Also, this issue occur on both my zimbra, including 5.0.18