[PLIP-Advisories] [Plone] #10959: API for password validation policy
Change notifications for Plone PLIPs on Trac.
plone-plip-advisories at lists.plone.org
Fri Jun 24 01:13:05 UTC 2011
#10959: API for password validation policy
---------------------+------------------------------------------------------
Reporter: djay | Owner:
Type: PLIP | Status: reopened
Priority: minor | Milestone: 4.2
Component: Unknown | Resolution:
Keywords: |
---------------------+------------------------------------------------------
Comment(by djay):
rossp: I misspoke. There is no need to setup a new policy.
PasswordStrength comes with one by default. However the one thing it
doesn't do as yet is install itself for password generation yet. To do
that go to the plugin in acl_users and activate it for as a "Properties
Plugin".
ggozad: Tests now all pass. I've also added documentation which shows how
to add your own plugins in tests/plugins.txt. Plugins will be able to do
things like use password history. Password expiry is out of scope of this
PLIP. Expiry is a good idea however and is possible by hooking into both
PAS authentication and the Plone login screens. Perhaps another PLIP? or
if you have code already for this?
--
Ticket URL: <http://dev.plone.org/plone/ticket/10959#comment:27>
Plone <http://plone.org>
Plone Enterprise Content Management System
More information about the PLIP-Advisories
mailing list