blackguerilla / clients-oriented-ftp

Automatically exported from code.google.com/p/clients-oriented-ftp
0 stars 0 forks source link

Define password change interval. #458

Open GoogleCodeExporter opened 9 years ago

GoogleCodeExporter commented 9 years ago
*What steps will reproduce the problem?*
1. Passwords length can be defined, password complexity is foreseen to be 
defined in r528, password change interval is not included in any revision yet.

*What is the expected output? What do you see instead?*
In some countries, depending on the data stored, system should force users (or 
allow to) to change their passwords in defined intervals (for example: every 30 
days).

While ProjectSend allows for defining password length, and complexity is to be 
included in r528, option for setting password change interval would be a nice 
add on to the next revision.

*What version of the product are you using? On what operating system?*
r514

*Please provide any additional information below.*
Surely there should be another timestamp in tbl_users referring to date of 
password change (current one refers to account creation date). Ideally activity 
log should also be extended (currently code "14" in actions-log.php refers to 
all revisions in client account).
Probably most elegant way to achieve the goal is to force redirection to 
password change form after given number of days since last password change.

regards,

Original issue reported on code.google.com by w.wr...@gmail.com on 21 Mar 2014 at 7:31

GoogleCodeExporter commented 9 years ago
Sorry for wrong type of issue- I totally missed it. Should be "enhancement" of 
course (can someone correct it?).

In addition to previous message: setting password change interval could be 
another option in "Security tab".

The password policy described above results from EU laws so it is probably 
affecting a number of countries.

regards,

Original comment by w.wr...@gmail.com on 23 Mar 2014 at 7:18