Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 20 Current »

In Abiquo, you can enforce your password best practice to improve user password security and usability. And you can allow users to reset their passwords.

The password options can:

  • Prevent users from changing between a set of common passwords

  • Ensure that users change their passwords periodically

  • Prevent users from quickly reverting to an old password

  • Require a minimum password length

  • Require complex passwords that do not contain the users name and include at least three of the following five categories: uppercase letters, lowercase letters, digits, non-alphanumeric characters and other unicode characters.

Configure password reset

With these options you can:

  • Deter multiple attempts to break into a user account

  • Allow users to reset their passwords and provide the URI for password reset.

Configure reCAPTCHA

For password recovery, you can enable reCAPTCHA V2 by adding reCAPTCHA keys to Abiquo. Request the keys from this link: https://www.google.com/recaptcha/admin#createsite

Set the public key in the Abiquo UI, in the client-config-custom.json file:

"client.captcha.publickey" : ""

Set the private key on the Abiquo server, in the abiquo.properties file:

abiquo.captcha.private.key=

If only one key is present and the other key is missing, the user will receive an error message, and they cannot recover their password.

Configure reset password email and URI

See Configure custom platform messages

Users can reset their password in the UI by clicking on the Forgot your password? link.

The Forgot your password link in the UI


You can configure the link address in the Configuration View, but if you do not wish to allow the user to reset their password, you should edit the client-config-custom.json file and set the client password recovery property to false.

 "client.password.recovery":false

When this value is false, the link will not display.

When it is true, the default password reset link will open the following dialog.

Enter your username to receive a mail to change your password


Password UI configuration

Set up passwords in Configuration view on the Security page: 

Click Edit to see more information about the range of values and the default. 

For more details, see Configuration view#Security

Set password security options in Configuration view

Create a user

When you create a user, on the Advanced tab you can select an option to ensure they reset their password on login.

User password options on the Advanced tab


Locked users

A user that is locked out for too many failed login attempts is marked as Suspended in Users view in both the list view and the card view.

A user account is suspended for too many password attempts

The administrator can edit the user and manually activate the account, or the user can wait for the lockout period to end. 

Manually activate a suspended user

API

In the LoginResource, see:


Password events

The Abiquo events related to passwords can be found in the  Users section of the Events table.

  • No labels