Feature #80793
closed
provide configurable password policies
Added by Anja Leichsenring about 7 years ago. Updated over 1 year ago.
0%
Description
Admins should be able to define a password policy to follow by all users of the system.
Updated by Riccardo De Contardi about 7 years ago
- Related to Feature #59073: [BE] Ask for password-change on next login added
Updated by Riccardo De Contardi about 7 years ago
- Related to Bug #56004: Retain username when entering an insecure password added
Updated by Riccardo De Contardi about 7 years ago
- Related to Feature #21659: Introduce Password Policies added
Updated by Riccardo De Contardi about 7 years ago
- Related to Feature #59074: [FE] Ask for password-change on next login added
Updated by Riccardo De Contardi about 7 years ago
- Related to Feature #69190: Add password generator "wizard" added
Updated by Riccardo De Contardi about 7 years ago
- Related to Feature #78928: Password Recovery for Backend User added
Updated by Riccardo De Contardi almost 7 years ago
- Related to Feature #51479: Show somehow which user passwords are treatend as unsecure. added
Updated by Jigal van Hemert over 6 years ago
There are already a couple of extensions that implement this annoying behavior. Perhaps it's better to look for a library that can really calculate the strength of a password/passphrase and show that next to the field with the new password. If that works correctly it might be useful to have a setting for the minimum acceptable strength.
Updated by
Updated by Stephan Großberndt about 5 years ago
- Related to Feature #37800: felogin password policy hook added
Updated by Oliver Hader about 5 years ago
- Related to Feature #87299: Enhance password handling and two-factor authentication added
Updated by Stephan Großberndt about 5 years ago
- Related to Epic #84262: [FEATURE] Update felogin to extbase added
Updated by Benni Mack about 4 years ago
- Category changed from Security to Miscellaneous
Hey Anja,
I consulted with the security team, and we decided that this won't go into TYPO3 Core, but rather be a standalone extension (as there are multiple extensions out there already). This isn't part of the BSI requirement anymore, and thus does not need to be part of TYPO3 Core.
Updated by Torben Hansen about 2 years ago
- Related to Epic #97387: Configurable Password Policies added
Updated by Oliver Hader over 1 year ago
- Related to deleted (Feature #87299: Enhance password handling and two-factor authentication)
Updated by Oliver Hader over 1 year ago
- Related to deleted (Feature #69190: Add password generator "wizard")
Updated by Oliver Hader over 1 year ago
- Blocked by deleted (Feature #80792: Password strength meter for BE Login)
Updated by Oliver Hader over 1 year ago
- Category changed from Miscellaneous to Security
Updated by Oliver Hader over 1 year ago
- Related to deleted (Epic #97387: Configurable Password Policies)
Updated by Oliver Hader over 1 year ago
- Status changed from New to Closed
→ continue at #97387 for TYPO3 v12
Updated by Oliver Hader over 1 year ago
- Related to Epic #97387: Configurable Password Policies added
Updated by Jochen Roth over 1 year ago
- Related to Task #99349: Use the new password policies in setupDatabaseService added