From 46b4bc8b6b6535eee72c27f08911de767532d225 Mon Sep 17 00:00:00 2001
From: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date: Fri, 17 May 2019 11:01:15 +0200
Subject: [PATCH] views: do not set password on unlink for LDAP users (#24710)

---
 src/authentic2_auth_fc/views.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/authentic2_auth_fc/views.py b/src/authentic2_auth_fc/views.py
index 5cf65bb..a47285d 100644
--- a/src/authentic2_auth_fc/views.py
+++ b/src/authentic2_auth_fc/views.py
@@ -536,7 +536,7 @@ class UnlinkView(LoggerMixin, FormView):
         for event in self.request.session.get(constants.AUTHENTICATION_EVENTS_SESSION_KEY, []):
             if event['how'].startswith('password'):
                 return False
-        return True
+        return self.request.user.can_change_password()
 
     def dispatch(self, request, *args, **kwargs):
         if not request.user.is_authenticated():