Topic: [Contrib] sme 7 password advanced options

[Stefano]

Hi all

I've finished my first contrib for  Sme7

It creates a new panel in "Collaboration" section and it permits to:

- change passwordstrength for admin, ibays and user
- enable password ageing for users

you can set:
- password max age
- warning period

you can choose users to apply ageing settings.

when password age is > (max age - warning) users receive a mail with instructions to change their password.

if password age is > max age, admin receive mail with a warning

mail message to user can be modified editing a single file

currently only english and italian languages  are supported

Todo:
- possibility to setup expiration period for account
- possibility to lock an account when password age > (max age + expiration time)


I've tested it on vmware and on real production servers successfully

Rpm can be found here:
http://sviluppocms.no-ip.com/updates/smeserver-password-1.0.0-02.noarch.rpm

Srpm:
http://sviluppocms.no-ip.com/updates/smeserver-password-1.0.0-02.src.rpm


If you have some suggestions or comments, I'm here
[/url]

[psoren]

Nice !!

Per

[bpivk]

I found some typos. Do i fix them just for myself or should i write them here so you can fix them?

[Stefano]

I found some typos. Do i fix them just for myself or should i write them here so you can fix them?

Hi...

well, as I said I'm here to improve my rpm

so, please send me a mail or contact me via msn (I've added your account to my accounts list)

TIA

ciao

Stefano

[Stefano]

Thanks to bpivk

* Wed Jan 24 2007 Blaz
- 1.0.0-03
- Cosmetics fixes
- English typos fixing

http://sviluppocms.no-ip.com/updates/smeserver-password-1.0.0-03.noarch.rpm
http://sviluppocms.no-ip.com/updates/smeserver-password-1.0.0-03.src.rpm

Ciao

Stefano

[rkscscc]

thanx man, haven't installed or looked at it yet, but was missing from my contrib favourites, so you're now added...

Keep up the good work...

1 request:  Instead of sending emails, is it possible when the user logs onto the server, to redirect them to the /server/user-password page and refuse them the connection until they change their password?

also, a suggestion, haven't seen any other contribs that would in the server panel allow you to change the strength of the passwords needed...  considering this might get you more followers  

otherwise, like i said, keep up the good work

[bpivk]

also, a suggestion, haven't seen any other contribs that would in the server panel allow you to change the strength of the passwords needed...  considering this might get you more followers

Well this one does. I guess you need to install it and check it out.  
You can set the password strength.

[rkscscc]

also, a suggestion, haven't seen any other contribs that would in the server panel allow you to change the strength of the passwords needed...  considering this might get you more followers

Well this one does. I guess you need to install it and check it out.  
You can set the password strength.

    bpivk, so your the one that when off with my marbles

Thanks, busy doing 10million things at once, must have slipped...

I stand corrected...

[william_syd]

Thanks to bpivk

* Wed Jan 24 2007 Blaz
- 1.0.0-03
- Cosmetics fixes
- English typos fixing

http://sviluppocms.no-ip.com/updates/smeserver-password-1.0.0-03.noarch.rpm
http://sviluppocms.no-ip.com/updates/smeserver-password-1.0.0-03.src.rpm

Ciao

Stefano

I think a lot of people will like this.

I think it's in the bug tracker how to get rpms into the smeaddons repository.

[stephen noble]

I think it's in the bug tracker how to get rpms into the smeaddons repository.

sort of, the process is still being developed
as you work your way through the steps
please add them here
http://smeserver.sourceforge.net/sme7/tech/Chapter3

thanks

[Stefano]

1 request:  Instead of sending emails, is it possible when the user logs onto the server, to redirect them to the /server/user-password page and refuse them the connection until they change their password?

Hi..

I'm working on the next release of my contrib..

your request is fine, but not so easy to be done; I was thinking about logon script (i.e. windows client) but it works only if client is in domain.. and, what if smeserver-loginscript rpm is installed?

mmmhhh.. the easiest way is email, but I'm open to every good idea about other solutions

ciao

Stefano

[rkscscc]

1 request:  Instead of sending emails, is it possible when the user logs onto the server, to redirect them to the /server/user-password page and refuse them the connection until they change their password?

Hi..

I'm working on the next release of my contrib..

your request is fine, but not so easy to be done; I was thinking about logon script (i.e. windows client) but it works only if client is in domain.. and, what if smeserver-loginscript rpm is installed?

mmmhhh.. the easiest way is email, but I'm open to every good idea about other solutions

ciao

Stefano

Maybe send them the email with the link to the /user-password page, also CC admin or specified adress so that they know the user is ignoring system messages the moment they get the call saying their passwords are not accepted...  

[bpivk]

Well this is not a problem. When they can't access mail they won't ignore the message.

[cool34000]

Very nice contrib ! Thanks a lot !!!

[cjensen]

Stefano this is indeed a very nice contrib!  Thank you for your work.

Craig