[OO-4030] Password requirements configurator for system administration - OpenOLAT Issue Management

XML

Word

Printable

Details

Type: New Feature
Status: In Progress (View Workflow)
Priority: Major
Resolution: Unresolved
Affects Version/s: None
Fix Version/s: 14.0
Component/s: Security, Identity, User, Permissions
Labels:
None

Funded by:
- EY
- Feusi

Description

Passwords requirements can not easily be customised. They need to be implemented on Spring XML bean level and in addition the text hints and error messages need to be customized in every available language.

In reality however the rules how to create passwords can be reduced some general rules. Those general rule can generate a generic hint text using a bullet list of all the elements of the password.

Things to be done and to be considered:

Implement UI for configure the password rules
Make sure that whenever something changes in that config extensive admin logging is performed
Implement the bean that checks against the rules
In the bean implement a method to create an appropriate, generic error message
In the bean implement a method to create a help text that explains what a valid password is
Implement form code when adding new or change password to use the new validator and the error handling
Make sure transition from the previous password setting is handled smoothly

Attachments

Options
- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List
- Download All

Attachments

OpenOLAT - Administration 2019-04-17 12-35-44.png
882 kB
17/Apr/19 1:46 PM

Activity

People

Assignee:

Urs Hensler

Reporter:

Florian Gnägi

Votes:

0 Vote for this issue

Watchers:

1 Start watching this issue

Dates

Created:

17/Apr/19 1:53 PM

Updated:

15/May/19 8:15 AM