Details
-
New Feature
-
Status: Open
-
Major
-
Resolution: Unresolved
-
None
-
None
-
None
Description
A user should not reuse the same password.
Add the ability to check if the password entered by the user when resetting their password or when the system admin is resetting the user password has ever been used by the same user before. If so, reject with a message telling the user to enter a different password.
Allow admin to set the max number of passwords the system will check when evaluating pass re-use i.e the system should for example allow a user to use the same password, if 5 other passwords have been used.
Attachments
Issue Links
- links to