Feature #51479
closed
Show somehow which user passwords are treatend as unsecure.
Added by Kay Strobach over 11 years ago.
Updated almost 5 years ago.
Description
Show somehow which user passwords are treatend as unsecure.
-> it's hard to figure out, which passwords are the problem :D
- Status changed from New to Needs Feedback
So you want a list of users there?
either a list of users / uid in the mail or any indication in the be_user module, that a particular users password is unsecure (in case of encryption)
- Category set to Backend User Interface
- Status changed from Needs Feedback to New
Basically, the report only needs to collect the backend user names and uids of effected accounts and to display those in a nice table.
- Category changed from Backend User Interface to Reports
- Related to Feature #80793: provide configurable password policies added
- Status changed from New to Needs Feedback
Hey Kay,
I know this issue is very old but I need some basic input again on this.
What do you mean with insecure? I guess passwords that haven't been converted to salted passwords yet?
There was a report, which said something like, "xxx passwords are not yet converted and considered safed unsecure".
The UX Problem was, that there was no way to see, in the UI, which of the users are affected.
For v9 etc. this might be considered deprecated, and could be closed, i can not find the report in the v9 module anymore.
I guess we're talking of this one:
TYPO3 8.7.32
EXT:reports/Classes/Report/Status/SecurityStatus.php, function getSaltedPasswordsStatus
The label is: EXT:reports/Resources/Private/Language/locallang_reports.xlf:status_saltedPasswords_notAllPasswordsHashed
both function and label are absent on 9.5.15 (I don't know the exact commit, it could be https://review.typo3.org/c/Packages/TYPO3.CMS/+/57885/ )
- Status changed from Needs Feedback to Closed
Thanks for the quick feedback. Closing this now!
Also available in: Atom
PDF
Updated by 
Updated by 
Updated by 
Updated by 
Updated by 
Updated by