Hi, In DSpace 7, you can manage password complexity rules in a configuration. It's controlled by a regex pattern defined here: https://github.com/DSpace/DSpace/blob/main/dspace/config/modules/authentication-password.cfg#L51
Some examples of different patterns are given in the comments of that config file. At this time though there is no "maximum failure" attempt rules for the default password system. I do agree this would be useful enhancement though... so, you are welcome to create a bug ticket regarding this & we'll see if we can locate a volunteer interested in implementing it. https://github.com/DSpace/DSpace/issues Tim On Thursday, April 6, 2023 at 6:20:27 AM UTC-5 Brandon Sauvenière (Brandysve) wrote: > Hello, > > Is it possible to manage the password complexity when user create a > password? (ex : min 14 chars with uppercase, lowercase, numbers and special > chars). > > It there a maximal failures attempts? We're planning to use dspace for our > target with +/- 15000 users. We want to be sure that it is safe against > attacks. > > It is external users so we don't use LDAP, shibboleth, etc... > > Thank you :) > -- All messages to this mailing list should adhere to the Code of Conduct: https://www.lyrasis.org/about/Pages/Code-of-Conduct.aspx --- You received this message because you are subscribed to the Google Groups "DSpace Technical Support" group. To unsubscribe from this group and stop receiving emails from it, send an email to dspace-tech+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/dspace-tech/0f0a2669-55c4-49cc-aee7-7a51e12be664n%40googlegroups.com.
