Creating account fails if password is already taken
Creating an user account fails if the password entered is already taken by another user account.
The webclient shows a 401 notification and the server logs systems.dmx.core.service.accesscontrol.AccessControlException: user "admin" has no READ permission for object 4078
. The new account is not created.
This is due to DM5 value sharing. The Core's value integrator wants share the password -- because it is the same -- for both accounts. This fails as the user who creates the account has no access to the existing password topic. Password topics are private for the respective user.
Password topics must not be shared. They must exist per-user. But how can the value integrator know this?