Uploaded image for project: 'Sakai'
  1. Sakai
  2. SAK-39378

Supporting kernel features for SAK-24392 (password validation)

    XMLWordPrintable

    Details

    • Type: Feature Request
    • Status: CLOSED
    • Priority: Critical
    • Resolution: Fixed
    • Affects Version/s: 2.9.x
    • Fix Version/s: 10.0, 11.0
    • Component/s: Kernel
    • Labels:
    • 10 status:
      Resolved
    • Property addition/change required:
      Yes
    • CLE Team Issue:
      Yes
    • Previous Issue Keys:
      KNL-1123

      Description

      This is the kernel ticket related to SAK-24392 (password validation)

      NOTE: aside from entitybroker_KNL-1123.patch.txt, the rest of these patches are out of date and differ substantially from what was applied to trunk, the final implementation is more focused and the provider is easier to implement
      There is also a new REST endpoint which will do the password validation check based on the system password policy

      Config params

      1. Control user password policy (KNL-1123)
      2. Enable the user password policy handling, must be true to enable the password policy
      3. Other "user.password" settings have no effect if this is false
      4. Default: false
        #user.password.policy=true
      5. Controls the name of the password policy provider class, changing this will make the settings below meaningless
      6. Default: org.sakaiproject.user.api.PasswordPolicyProvider
        #user.password.policy.provider.name=name.of.the.spring.bean
      7. default PasswordPolicyProvider: Controls the entropy settings for the password policy check
      8. Defaults: as shown below (minimum.entropy=16, medium.entropy=32, high.entropy=48)
        #user.password.minimum.entropy=16
        #user.password.medium.entropy=32
        #user.password.high.entropy=48
      9. default PasswordPolicyProvider: Controls the maximum length of sequence of characters from the user EID that is allowed for the password
      10. Default: 3
        #user.password.maximum.sequence.length=3

        Gliffy Diagrams

          Attachments

          1. entitybroker_KNL-1123.patch.txt
            4 kB
          2. KNL-1123_2_kernel.patch
            7 kB
          3. KNL-1123_2_sakai-mock.patch
            0.5 kB
          4. KNL-1123_2.patch.txt
            6 kB
          5. KNL-1123_3.patch.txt
            1 kB
          6. KNL-1123_password_policy_api.patch
            12 kB
          7. KNL-1123_reference_js.patch
            2 kB
          8. KNL-1123.patch.txt
            16 kB

            Issue Links

              Activity

                People

                • Assignee:
                  aaronz Aaron Zeckoski (Inactive)
                  Reporter:
                  bjones86 Brian Jones
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  13 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved:

                    Git Source Code