Miller-Media / expire-passwords

Require certain users to change their passwords on a regular basis.

https://wordpress.org/plugins/expire-passwords/

GNU General Public License v2.0

7 stars 4 forks source link

readme

Expire User Passwords

Require certain users to change their passwords on a regular basis.

Contributors: fjarrett, millermedianow, millermediadev, janwoostendorp
Tags: admin, login, membership, passwords, profile, security, users
Requires at least: 4.0
Tested up to: 5.6
Stable tag: 1.3.1
License: GPL-2.0

Description

Note: This is a forked version of the now unsupported Expire Passwords plugin. The notes below are copied over from the original plugin and will be updated as relevant updates become available.

Did you find this plugin helpful? Please consider leaving a 5-star review.

Harden the security of your site by preventing unauthorized access to stale user accounts.

This plugin is also ideal for sites needing to meet certain industry security compliances - such as government, banking or healthcare.

In the plugin settings you can set the maximum number of days users are allowed to use the same password (90 days by default), as well as which user roles will be required to reset their passwords regularly (non-Administrators by default).

Languages supported:

English
Czech
Español
Dutch

Development of this plugin is done on GitHub. Pull requests welcome. Please see issues reported there before going to the plugin forum.

Screenshots

Configure which user roles should be required to regularly reset their passwords and how often.

Configure which user roles should be required to regularly reset their passwords and how often.

Users with expired passwords are redirected to the password reset screen upon sign in.

Users with expired passwords are redirected to the password reset screen upon sign in.

Users are not permitted to use the same password two times in a row during reset.

Users are not permitted to use the same password two times in a row during reset.

Changelog

1.3 - September 27, 2022

Added ability for users to reset their expired password from the login screen
Added Dutch translation

Props @janwoostendorp

1.2 - May 4, 2022

Added 'eup_submenu_access' filter for greater control to access of plugin settings

1.1.0 - February 15, 2020

Fix: Updated namespace issues that caused critical errors when installing
Tweak: Tested support for WordPress 5.3.2

1.0.0 - November 7, 2019

New: Indicate support for WordPress 5.3

0.6.0 - January 5, 2017

Fix: Expiration not updating when resetting a password via email confirmation link.

Props @fjarrett

0.5.0 - December 23, 2016

Tweak: Indicate support for WordPress 4.7 and require at least 4.0.
Fix: Selected user roles in plugin settings not always being honored.
Fix: Destroy all sessions after login with an expired password.

Props @fjarrett

0.4.0 - April 13, 2016

New: Indicate support for WordPress 4.5.
Tweak: Bring back PHP 5.2 compatibility.

Props @fjarrett

0.3.0 - July 9, 2015

New: Language support for Czech
Tweak: Optimizations requiring PHP 5.3 or higher
Fix: User role array error before options exist

Props @fjarrett, @dero

0.2.2 - July 2, 2015

New: Language support for Español

Props @fjarrett

0.2.1 - July 2, 2015

Fix: Fatal undefined function error occuring in some cases (#3)

Props @fjarrett

0.2.0 - April 29, 2015

New: Disallow using the same password as before on reset (#1)
Tweak: Use default if limit is set to greater than 365 days

Props @fjarrett

0.1.0 - April 28, 2015

Initial release

Props @fjarrett