Open MariusBluem opened 7 years ago
Maybe implemented as password expiry in the password_policy app?
Not sure if that's enough. For my case you need also an option to lock the login until the passwords are changed in combination with an approval-mail to prevent that a stranger reset the password.
Are there some planes when this feature will integrate?
Are there some planes when this feature will integrate?
Once somebody implements it, because as of now it's only a request without any roadmap plans yet.
- special outside policies like for example periodic password changes (#8785)
In general this should also be provided via API to make it possible to integrate tools outside of Nextcloud.
I added those two for the request in #8785
Yes, API would be great :-)
What has to be done that the developers put it on their schedule?
Hello, any updates here? :)
Regarding the API and external tools that could change passwords I'd like to point to this discussion.
It seems to me like the "force reset password on next login"-feature is a different issue than the API.
Currently, if you use vanilla Nextcloud (without any apps), it is really unsecure. When you create a user, you then have to send the password to this user, and the way people do it is via email. And as you know users, they never change their password.
You can of course mitigate that with the registration app, or any user backend, but for vanilla users, it is unsecure.
You don't have to set a password. You can just create the account, people receive an email with a link and set their own password.
We should offer an function to force password changes, in case of:
In general this should also be provided via API to make it possible to integrate tools outside of Nextcloud.
cc @LukasReschke @Liwindo @hitam4450