Skip to main content

This Pluggable Authentication Service (PAS) plugin adds a password policy giving the possibility to define up to 5 regular expressions to validate a password. Default constrains are length, capital and lower letters, number and special characters.

Project description

PasswordStrength

This plugin works with Plone to allow an administrator to create a password policy for their site. Once installed it provides a Pluggable Authentication Service (PAS) plugin where you can create as many regular expressions rules which will each be applied against passwords during user registration. For example these rules can ensure a passwords strength such as minimum length and required letters or special characters.

Tests

This package is tested using Travis CI on Plone 5.2 and 6.0. For older

Requires

  • PlonePAS and its dependencies

  • Plone 5.2 or 6.0

  • For Plone 4.1, 4.2, 4.3 , 5.0 and 5.1 use Versions <> 0.5 or source-checkouts.

Installation

  1. Add Products.PasswordStrength to your buildout like any other Plone plugin.

  2. Add Products.PasswordStrength in the addon-controlpanel (prefs_install_products_form)

  3. You can configure the plugin in teh ZMI in /acl_users/password_strength_plugin/manage_propertiesForm

That’s it! Test it out.

Implementation

A PAS plugin for Validation checks the password against each regular expression listed in the properties. Any rules that fail result in the associated error messages being returned.

TODO

  1. Do password expiration?

Contribute

License

License BSD-ish, see LICENSE.txt

Credits

Original Author: Dylan Jay <software@pretaweb.com>. Sponsored by PretaGov.com

Thanks to Daniel Nouri and BlueDynamics for their NoDuplicateLogin which served as the base for this.

Thanks to the following for improvements to this plugin:

  • sgeulette

  • pysailor

  • regebro

  • macagua

  • pbauer

Changes

0.5.0 (2024-09-26)

  • Add support for Python 3, Plone 5.2 and Plone 6. Drop support for Plone 5.1 and older. [pbauer, djay]

  • Fix can not change weak password [ivanteoh]

0.4 (2015-06-05)

  • Updated Spanish translation. [macagua]

  • Removed old code and templates [djay]

  • Added buildout and robot tests for Plone 4.1, 4.2, 4.3 [sgeulette]

  • Dont’t skip password validation for manager [sgeulette]

  • Skip password validation for generated password [sgeulette]

  • Added i18n and french translation. [sgeulette]

  • Added travis configuration [sgeulette]

  • Added pwreset_form and test [sgeulette]

0.3.2 (2015-06-05)

  • Updated README file. [macagua]

  • Added QA and testing buildout configuration. [macagua]

  • Added more strings classifiers items for this packages. [macagua]

  • Added Spanish translation. [macagua]

  • Added i18n support. [macagua]

0.3.1 (2013-11-20)

  • Bugfix for use inside change-password

  • Don’t validate password strength of old password [pysailor]

0.3 (2013-08-18)

  • Added a monkey-patch for the zope.schema Password field to validate the password. This is necessary for the Plone 4 @@new-user form to work well. [regebro]

Earlier versions

0.2 - Packaged as egg. Plone 3.1 compatible

0.1 - Initial version. Plone 2.5 compatible

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

products_passwordstrength-0.5.0.tar.gz (19.5 kB view details)

Uploaded Source

Built Distribution

Products.PasswordStrength-0.5.0-py3-none-any.whl (25.4 kB view details)

Uploaded Python 3

File details

Details for the file products_passwordstrength-0.5.0.tar.gz.

File metadata

File hashes

Hashes for products_passwordstrength-0.5.0.tar.gz
Algorithm Hash digest
SHA256 ccb6402012ca540707223f9a855902b268c86c22552a7df9dae80dcc3ef2b0dd
MD5 a2beb82facac5f66933061ba693e8a96
BLAKE2b-256 49fe9545d7fcef08177493181be12b042aac656a9c318f060235b855ce90a6c5

See more details on using hashes here.

File details

Details for the file Products.PasswordStrength-0.5.0-py3-none-any.whl.

File metadata

File hashes

Hashes for Products.PasswordStrength-0.5.0-py3-none-any.whl
Algorithm Hash digest
SHA256 7538d9d25f3459ab7136d4e4d0319d800de0e2792286b04a7f869c97b6796ac2
MD5 b62dd0050860c7d1de4e9fa84342fb8a
BLAKE2b-256 aa93ebbcd8e17965e49cd7f0079b4225ee2502e10067a8e230f99a9b0c8353ab

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page