Page 1 of 1

Password Complexity Requirements

Posted: Mon Oct 10, 2011 3:30 pm
by matt631
The ability to enforce some password complexity requirements for adding new users would be a nice feature.. I take it nothing like this already exists / can be implemented by editing the code?

Re: Password Complexity Requirements

Posted: Tue Oct 11, 2011 1:50 pm
by FTP
OK, we will consider it.

Re: Password Complexity Requirements

Posted: Thu Jul 19, 2012 11:40 am
by niqbert
Any idea if and when "Create random Password" could be customizable?

Would be great if we can specify amount of total characters and minimal 1 alphanumric, 1 non-alphanumric, 1upper/lowercase, etc

Like: "Ab12!@=-"

Re: Password Complexity Requirements

Posted: Thu Jul 19, 2012 4:36 pm
by FTP
Yes, you can modify the related javascript by yourself,
just modify the file "webadmin/admin_adduser_form2.html", replace line 1568 to line 1578 with the following script:

Code: Select all

var charArray = ['0','1','2','3','4','5','6','7','8','9','a','b','c','d','e','f','g','h','i','j','k','l','m','n','o','p','q','r','s','t','u','v','w','x','y','z','A','B','C','D','E','F','G','H','I','J','K','L','M','N','O','P','Q','R','S','T','U','V','W','X','Y','Z','~','!','@','#','$','%','^','&','*','(',')','-',"_"];
function generateRandom(len) 
{
    len = 12;
    var result = "";
    for(var i=0; i<len; i++) 
    {
        var index = Math.ceil(Math.random()*72);
        result += charArray[index];
    }
    return result;
}

Re: Password Complexity Requirements

Posted: Fri Jul 20, 2012 12:30 pm
by niqbert
Thanks for the update,
the change in javascript code works good for me in v4.0.9!

Re: Password Complexity Requirements

Posted: Wed Mar 06, 2013 4:59 pm
by Mwaters
While this is great for new users and creating a new password for them, I would like to see the ability to require similar complexity requirements for users when they change their own passwords. I would also like to see something like "User cannot use any of their last [n] passwords" as well as being able to stipulate the minimum amount of time a password must be used before a change is permitted by the user(Minimum Password Age).

Re: Password Complexity Requirements

Posted: Wed Mar 06, 2013 5:09 pm
by Mwaters
Just noticed that the "Quick Add" user dialog does not adhere to the same password complexity requirements as the conventional Add User method. Would I need to make the same sort of edits to the "admin_adduser_form.html" file as I did to the "admin_adduser_form2.html" file as explained in an earlier post in this thread?

Re: Password Complexity Requirements

Posted: Fri Mar 08, 2013 8:58 am
by FTP
Mwaters wrote:Just noticed that the "Quick Add" user dialog does not adhere to the same password complexity requirements as the conventional Add User method. Would I need to make the same sort of edits to the "admin_adduser_form.html" file as I did to the "admin_adduser_form2.html" file as explained in an earlier post in this thread?

Yes, just modify those two files.

Re: Password Complexity Requirements

Posted: Fri Dec 13, 2013 1:07 pm
by FTP
You can upgrade to the version 4.3.3, now it supports password complexity.