[jira] [Commented] (OFBIZ-4958) Additional Validation for Password : Make password pattern driven

Jacques Le Roux (JIRA) Sat, 26 Oct 2013 09:53:08 -0700

    [ 
https://issues.apache.org/jira/browse/OFBIZ-4958?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13806134#comment-13806134
 ]


Jacques Le Roux commented on OFBIZ-4958:
----------------------------------------

BTW I stumbled upon this page from owasp 
https://www.owasp.org/index.php/Authentication_Cheat_Sheet

> Additional Validation for Password  : Make password pattern driven
> ------------------------------------------------------------------
>
>                 Key: OFBIZ-4958
>                 URL: https://issues.apache.org/jira/browse/OFBIZ-4958
>             Project: OFBiz
>          Issue Type: Sub-task
>          Components: ALL COMPONENTS
>    Affects Versions: SVN trunk
>            Reporter: Sumit Pandit
>            Assignee: Jacques Le Roux
>             Fix For: SVN trunk
>
>         Attachments: OFBIZ-4958.patch, OFBIZ-4958.patch
>
>
> Providing an additional validation for password  -
> Idea is to achieve following -
> * Insist user to provide a stronger login password for additional protection.
> * User's password need to match a pre-defined Pattern.
> * Password pattern can change any time.
> * Validation should applied for new user creation and update password 
> processes.
> --
> Thanks And Regards
> Sumit Pandit



--
This message was sent by Atlassian JIRA
(v6.1#6144)

[jira] [Commented] (OFBIZ-4958) Additional Validation for Password : Make password pattern driven

Reply via email to