* Admin: warn admin if passwords for new accounts / password reset lack in strength

This commit is contained in:
Ralf Becker 2016-08-12 13:46:30 +02:00
parent dceafd2400
commit 8d6a2166b4
5 changed files with 16 additions and 3 deletions

View File

@ -900,6 +900,7 @@ app.classes.addressbook = AppJS.extend(
case 'account_lid':
case 'n_family':
case 'n_given':
case 'account_passwd':
case 'account_passwd_2':
var values = this.et2._inst.getValues(this.et2);
var data = {

View File

@ -265,6 +265,17 @@ class admin_account
*/
public static function ajax_check(array $data, $changed)
{
// for 1. password field just check password complexity
if ($changed == 'account_passwd')
{
$data['account_fullname'] = $data['account_firstname'].' '.$data['account_lastname'];
if (($error = Api\Auth::crackcheck($data['account_passwd'], null, null, null, $data)))
{
$error .= "\n\n".lang('If you ignore that error as admin, you should check "%1"!', lang('Must change password upon next login'));
}
Api\Json\Response::get()->data($error);
return;
}
// generate default email address, but only for new Api\Accounts
if (!$data['account_id'] && in_array($changed, array('n_given', 'n_family', 'account_lid')))
{

View File

@ -233,7 +233,6 @@ delete application admin de Anwendung löschen
delete category admin de Kategorie löschen
delete group admin de Gruppe löschen
delete identity admin de Identität löschen
delete including sub-enteries admin de Löschen mit Unter-Kategorie(en)
delete peer server admin de Server von Serververbund löschen
delete selected entries admin de Ausgewählte Einträge löschen
delete the category admin de Kategorie löschen
@ -443,6 +442,7 @@ if different from email address admin de falls unterschiedlich zu E-Mail-Adresse
if no acl records for user or any group the user is a member of admin de Wenn es keinen ACL-Eintrag für einen Benutzer oder eine Gruppe, der er angehört, gibt
if using ldap, do you want to manage homedirectory and loginshell attributes? admin de Wenn Sie LDAP verwenden, möchten Sie Benutzerverzeichnisse und Kommandointerpreter verwalten ?
if using ssl or tls, you must have the php openssl extension loaded. admin de Wenn Sie SSL oder TLS benutzen, müssen Sie die openssl PHP Erweiterung geladen haben.
if you ignore that error as admin, you should check "%1"! admin de Falls Sie den Fehler als Administrator ignorieren, sollten Sie "%1" abhacken!
if you specify port 5190 as sieve server port, you enforce ssl for sieve (server must support that) admin de Wenn Sie als SIEVE Server Port 5190 eintragen, wird für die Kommunikation mit dem SIEVE-Server eine SSL-Verbindung verwendet (der Server muss das natürlich unterstützen)
imap admin password admin de IMAP Administrator Passwort
imap admin user admin de IMAP Administrator Benutzer

View File

@ -442,6 +442,7 @@ if different from email address admin en if different from EMail address
if no acl records for user or any group the user is a member of admin en If no ACL records for user or any group the user is a member of
if using ldap, do you want to manage homedirectory and loginshell attributes? admin en If using LDAP, do you want to manage home directory and loginshell attributes?
if using ssl or tls, you must have the php openssl extension loaded. admin en If using SSL or TLS, you must have the PHP openssl extension loaded.
if you ignore that error as admin, you should check "%1"! admin en If you ignore that error as admin, you should check "%1"!
if you specify port 5190 as sieve server port, you enforce ssl for sieve (server must support that) admin en if you specify port 5190 as sieve server port, you enforce ssl for sieve (server must support that)
imap admin password admin en IMAP admin password
imap admin user admin en IMAP admin user

View File

@ -26,7 +26,7 @@
</row>
<row>
<description value="Password" for="account_passwd"/>
<passwd id="account_passwd" class="et2_fullWidth"/>
<passwd id="account_passwd" class="et2_fullWidth" onchange="app.addressbook.account_change"/>
<description/>
<description value="Re-enter password" for="account_passwd_2"/>
<passwd id="account_passwd_2" class="et2_fullWidth" onchange="app.addressbook.account_change"/>
@ -74,7 +74,7 @@
<description value="Last password change"/>
<date-time id="account_lastpwd_change" readonly="true"/>
<description/>
</row>
</row>
</rows>
</grid>
</template>