# HG changeset patch
# User Thierry Florac <thierry.florac@onf.fr>
# Date 1505130796 -7200
# Node ID d58453809379d0ae20a02c8c4ae080d8a4fff149
# Parent  2f97a26698673123df30d45bd4af502234005b6d
Disable authentication for system users without password

diff -r 2f97a2669867 -r d58453809379 src/pyams_security/plugin/admin.py
--- a/src/pyams_security/plugin/admin.py	Wed Aug 02 09:05:58 2017 +0200
+++ b/src/pyams_security/plugin/admin.py	Mon Sep 11 13:53:16 2017 +0200
@@ -48,11 +48,14 @@
 
     @password.setter
     def password(self, value):
-        manager = get_utility(IPasswordManager, name='SSHA')
-        self._password = manager.encodePassword(value)
+        if value:
+            manager = get_utility(IPasswordManager, name='SSHA')
+            self._password = manager.encodePassword(value)
+        else:
+            self._password = None
 
     def authenticate(self, credentials, request):
-        if not self.enabled:
+        if not (self.enabled and self.password):
             return None
         attrs = credentials.attributes
         login = attrs.get('login')