Description
System must be able to enforce a password policy rule for built-in users by the administrator. The details are specified in the RBAC PRD here - https://docs.google.com/document/d/1DtkJZdq7LxAHBezMga3Z2qA3bFjFh0WhypouWEEnMWU/edit
Minimum of six characters long (This is for backwards compat purposes) -> This is the default minimum but can be changed by the admin
A switch to enable the following :
Upper case alphabetic (A through Z (uppercase characters))
Lower case alphabetic a through z (lowercase characters)
Numeric 0 through 9 (numeric characters)
Special character (Special characters: ~, @, #, %, ^, ( ), -, _, { })
Old passwords get migrated without the rule in effect. Passwords that are newly created/rotated have to meet the rules
Attachments
Issue Links
For Gerrit Dashboard: MB-22682 | ||||||
---|---|---|---|---|---|---|
# | Subject | Branch | Project | Status | CR | V |
74679,2 | MB-22682 configurable password policy | master | ns_server | Status: MERGED | +2 | +1 |
74680,2 | MB-22682 REST API to get password policy | master | ns_server | Status: MERGED | +2 | +1 |
74681,2 | MB-22682 REST API to set password policy | master | ns_server | Status: MERGED | +2 | +1 |
74682,3 | MB-22682 audit setting password policy | master | ns_server | Status: MERGED | +2 | +1 |
74683,3 | MB-22682 REST API to validate password against password policy | master | ns_server | Status: MERGED | +2 | +1 |
75093,5 | MB-22682 add just_validate to POST /settings/web so UI will be able | master | ns_server | Status: MERGED | +2 | +1 |
75094,5 | Revert "MB-22682 REST API to validate password against password policy" | master | ns_server | Status: MERGED | +2 | +1 |