[MGNLPUR-196] Credentials expiring functionality Created: 23/Sep/20 Updated: 23/Sep/20 Resolved: 23/Sep/20 |
|
| Status: | Closed |
| Project: | Magnolia Public User Registration |
| Component/s: | None |
| Affects Version/s: | None |
| Fix Version/s: | None |
| Type: | Improvement | Priority: | Major |
| Reporter: | David Caviedes Marquez | Assignee: | Unassigned |
| Resolution: | Duplicate | Votes: | 0 |
| Labels: | credentials, password, pur | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Issue Links: |
|
||||||||
| Template: |
|
||||||||
| Acceptance criteria: |
Empty
|
||||||||
| Task DoD: |
[ ]*
Doc/release notes changes? Comment present?
[ ]*
Downstream builds green?
[ ]*
Solution information and context easily available?
[ ]*
Tests
[ ]*
FixVersion filled and not yet released
[ ] 
Architecture Decision Record (ADR)
|
||||||||
| Date of First Response: | |||||||||
| Description |
|
Hello,
we think is fundamental to have a credentials expiring functionality into PUR module because is one of the basic things a user system must to have to comply with basic security rules, for example OWASP Top 10 Web Application Security Risks: https://owasp.org/www-project-top-ten/OWASP_Top_Ten_2017/Top_10-2017_A2-Broken_Authentication
It would be great if PUR module also cloud check password strength to avoid weak ones.
Thanks in advance |
| Comments |
| Comment by Jonathan Ayala [ 23/Sep/20 ] |
|
Hi David, Thanks for reporting this improvement request, it will help to improve Magnolia. As there's an already existing ticket covering this functionality as well as more interesting features related to password management (MAGNOLIA-6980) I'm closing this ticket as duplicated. You can keep track of its evolution through the link you can find in the links section. Regards, Jonathan. |