I'd not go against password rotation that head-on. It's a quite regular process in enterprises and for some applications its even enforced by local laws. Not that I'm saying web2py should definitively have such a feature as a builtin, but still...don't shoot the messenger :P
On Wednesday, April 27, 2016 at 3:04:35 PM UTC+2, Leonel Câmara wrote: > > Even if it's 200 days, what do you gain by forcing users to change > passwords? Making them have post-its with the password? Just force them to > have a strong password. > -- Resources: - http://web2py.com - http://web2py.com/book (Documentation) - http://github.com/web2py/web2py (Source code) - https://code.google.com/p/web2py/issues/list (Report Issues) --- You received this message because you are subscribed to the Google Groups "web2py-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
