Adriano Faria Posted January 30, 2016 Posted January 30, 2016 About This File This plugin will change the behaviour of all PASSWORD fields on IPS4, by allowing the administrator to set the minimum length for the passwords. IPS4 default is 3 characters. IMPORTANT: BE ADVISED THAT EXISTING USERS WITH PASSWORD LENGTH LESS THAN THE SETTING VALUE WON'T BE ABLE TO LOGIN. THEY WILL HAVE TO USE THE RESET PASSWORD FEATURE ON LOGIN SCREEN, BY CLICKING IN THE LINK "FORGOT YOUR PASSWORD?".
Valthos Posted January 30, 2016 Posted January 30, 2016 If a users current password is less than the newly defined minimum, they can't login. Tested by setting a new accounts password to 4 characters, enabled the plugin with a minimum 8 characters, this new account then fails to login with the error message stating the minimum password length is 8 characters. Wouldn't it be helpful if it was to allow user to login but then ask them to update their password.
Adriano Faria Posted January 30, 2016 Author Posted January 30, 2016 9 minutes ago, Valthos said: Wouldn't it be helpful if it was to allow user to login but then ask them to update their password. I don't think there's an workaround for this. The link to remember password doesn't appear?
Valthos Posted January 30, 2016 Posted January 30, 2016 1 minute ago, Adriano Faria said: I don't think there's an workaround for this. The link to remember password doesn't appear? If they can't login, how would the system remember their password?
Adriano Faria Posted January 30, 2016 Author Posted January 30, 2016 You don't need to login to use the password remember! It wouldn't have no sense if I need to inform the password. It will ask your email or username!
Valthos Posted January 30, 2016 Posted January 30, 2016 Oh do you mean password reset? Thought you meant the remember me function. Yes that's still there.
Adriano Faria Posted January 30, 2016 Author Posted January 30, 2016 Yes. I don't think there's much else to do. Better create a topic in a forum or send a bulk email telling users to reset the password.
Adriano Faria Posted January 30, 2016 Author Posted January 30, 2016 Added the following notice to the file: "IMPORTANT: BE ADVISED THAT EXISTING USERS WITH PASSWORD LENGTH LESS THAN THE SETTING VALUE WON'T BE ABLE TO LOGIN. THEY WILL HAVE TO USE THE RESET PASSWORD FEATURE ON LOGIN SCREEN, BY CLICKING IN THE LINK "FORGOT YOUR PASSWORD?".
EmpireKicking Posted January 31, 2016 Posted January 31, 2016 Create file, by read above! What? I'm not going to install if there are problems
Adriano Faria Posted January 31, 2016 Author Posted January 31, 2016 4 hours ago, EmpireKickAss said: I'm not going to install if there are problems There is no problem with the file. It's kinda logical: if a user uses a password with 4 chars and you change to 10, he won't login. He needs to create another password. And FWIW: that's exacly why IPS doesn't change it after all those years.
Adriano Faria Posted April 25, 2016 Author Posted April 25, 2016 What's New in Version 1.0.1: Fix: the existing users will still be able to keep logging in on your board. They will be required to use new password length when they change their password.
Recommended Posts
Archived
This topic is now archived and is closed to further replies.