[ 
https://issues.apache.org/jira/browse/OFBIZ-4958?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13410194#comment-13410194
 ] 

Sumit Pandit edited comment on OFBIZ-4958 at 7/17/12 5:26 AM:
--------------------------------------------------------------

*Demo Password pattern requirement - *

* Will contains alphanumeric and the following special characters:!@#$%^&*
* Contains at least 1 of the special characters listed above
* The required special character can appear anywhere in the string (for 
example: !abc, a!bc, abc!)
* Minimum length 5 characters.

Based on above points; password pattern is as follows - 
{code:title=Password Pattern|borderStyle=solid}
^.*(?=.{5,})(?=.*[a-zA-Z])(?=.*[!@#$%^&*]).*$
{code}

Above pattern configuration will exist in security.properties file, so that 
user can change the pattern as per customize requirement.





                
      was (Author: sumitp):
    *Demo Password pattern requirement - *

* Only contains alphanumeric and the following special characters:!@#$%^&*
* Contains at least 1 of the special characters listed above
* The required special character can appear anywhere in the string (for 
example: !abc, a!bc, abc!)
* Minimum length 5 digit.

Based on above points; password pattern is as follows - 
{code:title=Password Pattern|borderStyle=solid}
^.*(?=.{5,})(?=.*[a-zA-Z])(?=.*[!@#$%^&*]).*$
{code}

Above pattern configuration exist in security.properties file so that user can 
change the pattern as per customize requirement.





                  
> Additional Validation for Password  : Make password pattern driven
> ------------------------------------------------------------------
>
>                 Key: OFBIZ-4958
>                 URL: https://issues.apache.org/jira/browse/OFBIZ-4958
>             Project: OFBiz
>          Issue Type: Sub-task
>          Components: ALL COMPONENTS
>    Affects Versions: SVN trunk
>            Reporter: Sumit Pandit
>             Fix For: SVN trunk
>
>
> Providing an additional validation for password  -
> Idea is to achieve following -
> * Insist user to provide a stronger login password for additional protection.
> * User's password need to match a pre-defined Pattern.
> * Password pattern can change any time.
> * Validation should applied for new user creation and update password 
> processes.
> --
> Thanks And Regards
> Sumit Pandit

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: 
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

        

Reply via email to