-
Bug
-
Resolution: Fixed
-
Medium
-
1.3.2
-
None
-
standalone, java version "1.5.0_11", windows xp professional
The reset password functionality does not work when a directory password configuration has been set. For example, create a directory, set a password regex and try to reset a user's password in that directory. The password reset fails. This is described in more detail in this issue http://jira.atlassian.com/browse/CWD-362.
I don't think this is a duplicate as the CWD-362 issue simply requests that the error reporting be fixed. In this issue I am requesting that the reset password functionality should respect the password configuration set for a directory. If not, it cannot be used when a password configuration is set.
- is duplicated by
-
CWD-1551 crowd does not send passwords that meet the given password requirement
-
- Closed
-
- is incorporated by
-
CWD-1875 Update Forgotten Password workflow to Atlassian standard
- Closed
- is related to
-
CWD-362 Reset password error is not useful when regex is not passed.
-
- Closed
-
- supersedes
-
CWD-1028 Show error message if a Regular Expression is not between "[ ]" or "( )"
- Closed
Implementation of a regex generator will likely be non-trivial and randomly generating a password till it matches the regexp is non-deterministic.
An easier approach would be to allow users to specify a password generation pattern per directory as either:
So someone with the restriction of "at least six characters with at least one number and at least one symbol" could create a password generation pattern like "llldllls". This is a subset of all possible strings that match the restriction, but it much easier to specify and generate. The password validation pattern could still be the original regexp.