Uploaded image for project: 'Sakai'
  1. Sakai
  2. SAK-39378

Supporting kernel features for SAK-24392 (password validation)

    XMLWordPrintable

    Details

    • Type: Feature Request
    • Status: CLOSED
    • Priority: Critical
    • Resolution: Fixed
    • Affects Version/s: 2.9.x
    • Fix Version/s: 10.0, 11.0
    • Component/s: Kernel
    • Labels:
    • 10 status:
      Resolved
    • Property addition/change required:
      Yes
    • CLE Team Issue:
      Yes
    • Previous Issue Keys:
      KNL-1123

      Description

      This is the kernel ticket related to SAK-24392 (password validation)

      NOTE: aside from entitybroker_KNL-1123.patch.txt, the rest of these patches are out of date and differ substantially from what was applied to trunk, the final implementation is more focused and the provider is easier to implement
      There is also a new REST endpoint which will do the password validation check based on the system password policy

      Config params

      1. Control user password policy (KNL-1123)
      2. Enable the user password policy handling, must be true to enable the password policy
      3. Other "user.password" settings have no effect if this is false
      4. Default: false
        #user.password.policy=true
      5. Controls the name of the password policy provider class, changing this will make the settings below meaningless
      6. Default: org.sakaiproject.user.api.PasswordPolicyProvider
        #user.password.policy.provider.name=name.of.the.spring.bean
      7. default PasswordPolicyProvider: Controls the entropy settings for the password policy check
      8. Defaults: as shown below (minimum.entropy=16, medium.entropy=32, high.entropy=48)
        #user.password.minimum.entropy=16
        #user.password.medium.entropy=32
        #user.password.high.entropy=48
      9. default PasswordPolicyProvider: Controls the maximum length of sequence of characters from the user EID that is allowed for the password
      10. Default: 3
        #user.password.maximum.sequence.length=3

        Gliffy Diagrams

          Zeplin

            Attachments

            1. entitybroker_KNL-1123.patch.txt
              4 kB
            2. KNL-1123_2_kernel.patch
              7 kB
            3. KNL-1123_2_sakai-mock.patch
              0.5 kB
            4. KNL-1123_2.patch.txt
              6 kB
            5. KNL-1123_3.patch.txt
              1 kB
            6. KNL-1123_password_policy_api.patch
              12 kB
            7. KNL-1123_reference_js.patch
              2 kB
            8. KNL-1123.patch.txt
              16 kB

              Issue Links

              is depended on by

              Feature Request - Functionality that you would like to see in Sakai. SAK-23568 Add password policy control to the New Account tool

              • Major - Major loss of function or need for functionality in production in the near future.
              • CLOSED

              Feature Request - Functionality that you would like to see in Sakai. SAK-24392 Add password validation when users can set their password

              • Major - Major loss of function or need for functionality in production in the near future.
              • CLOSED

              Feature Request - Functionality that you would like to see in Sakai. SAK-24427 Improvements to account validator

              • Major - Major loss of function or need for functionality in production in the near future.
              • CLOSED
              is related to

              Task - A task that needs to be done. SAK-24197 Feature requests with patches needing merging/consideration for Sakai 10

              • Blocker - Blocks development and/or testing work, production could not run without this feature working correctly.
              • RESOLVED

              Task - A task that needs to be done. SAK-39680 Remove sakai-mock project

              • Critical - Crashes, loss of data, severe memory leak, need functionality ASAP in production.
              • RESOLVED

                Activity

                  People

                  • Assignee:
                    aaronz Aaron Zeckoski (Inactive)
                    Reporter:
                    bjones86 Brian Jones
                  • Votes:
                    0 Vote for this issue
                    Watchers:
                    13 Start watching this issue

                    Dates

                    • Created:
                      Updated:
                      Resolved:

                      Git Integration