| Table of Contents |
|---|
Password configuration options
In Abiquo, you can enforce your password best practice to improve user password security and usability. And you can allow users to reset their passwords.
...
Prevent users from changing between a set of common passwords
Ensure that users change their passwords periodically
Prevent users from quickly reverting to an old password
Require a minimum password length
Require complex passwords that do not contain the users name and include at least three of the following five categories: uppercase letters, lowercase letters, digits, non-alphanumeric characters and other unicode characters.
Email to remind users to change their password on a set of days before the expiry date
Configure password reset
With these options you can:
...
If only one key is present and the other key is missing, the user will receive an error message, and they cannot recover their password.
Configure password reset
...
and expiration emails
You can configure Abiquo to send emails:
For users to reset their password after they click on the Forgot your password? link
On a set of days before password expiry, to remind them to change their password
See Configure custom platform messages
...
Users can reset their password in the UI by clicking on the Forgot your password? link.
You can configure the link address in the Configuration View, but if you do not wish to allow the user to reset their password, you should edit the client-config-custom.json file and set the client password recovery property to false.
...
In the LoginResource, see:
Password events
The Abiquo events related to passwords can be found in the Users section of the Events table.