[CWD-2835] Provide a per-directory configuration option to explain configured password complexity requirements

Type: Suggestion
Resolution: Fixed
Fix Version/s: 2.5.2
Component/s: Core features, User Console
Labels:
- backlog

Feedback Policy:

Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

As per summary.

has a regression in

CWD-3171 Password complexity requirement message is not displayed

Closed

is related to

CWD-1189 Need to provide clearer user console messages for changing password

Closed

relates to

CWD-2962 Password Complexity Message for Remote Directories ( Open LDAP / AD etc )

Under Consideration

ArvindA added a comment - 26/Oct/2012 8:47 PM

Hi mbeaucha, thanks for the feedback. The fix was implemented such that it works along with password regex as explained in the crowd documentation page https://confluence.atlassian.com/display/CROWD/Configuring+an+Internal+Directory for Crowd Internal Directory. We can raise a new issue and discuss/investigate how to go about fixing this issue with OpenLDAP / AD.

ArvindA added a comment - 26/Oct/2012 8:47 PM Hi mbeaucha , thanks for the feedback. The fix was implemented such that it works along with password regex as explained in the crowd documentation page https://confluence.atlassian.com/display/CROWD/Configuring+an+Internal+Directory for Crowd Internal Directory. We can raise a new issue and discuss/investigate how to go about fixing this issue with OpenLDAP / AD.

Coop IT Coordinators added a comment - 26/Oct/2012 7:54 PM

I just upgraded to 2.5.2 to get this feature. It is very nicely implemented for the Crowd internal directory. Thanks! But unless I've missed it, it looks like there is no similar option for describing the requirements for an external (ex. OpenLDAP, AD, etc.) directory. Am I missing something or was this overlooked?

Coop IT Coordinators added a comment - 26/Oct/2012 7:54 PM I just upgraded to 2.5.2 to get this feature. It is very nicely implemented for the Crowd internal directory. Thanks! But unless I've missed it, it looks like there is no similar option for describing the requirements for an external (ex. OpenLDAP, AD, etc.) directory. Am I missing something or was this overlooked?

ArvindA added a comment - 26/Sep/2012 2:14 AM

Issue fixed and merged into 2_5_stable.

ArvindA added a comment - 26/Sep/2012 2:14 AM Issue fixed and merged into 2_5_stable.

Coop IT Coordinators added a comment - 03/Aug/2012 6:21 PM

One more thing that should be stated explicitly: the complexity requirements should be displayed to the user PRIOR to the user failing the requirements. As I mentioned in a previous comment, some users have a very hard time meeting complex requirements and they would be well served by being told the requirements ahead of composing their password to minimize their frustration.

I understand that it's more difficult to figure out which directory their so that you display the correct requirements. In our organization, the complexity requirements are set organization-wide, and do not differ between directories. I can't speak for how its done elsewhere.

Still crossing my fingers that this issue gets assigned to someone soon.

Coop IT Coordinators added a comment - 03/Aug/2012 6:21 PM One more thing that should be stated explicitly: the complexity requirements should be displayed to the user PRIOR to the user failing the requirements. As I mentioned in a previous comment, some users have a very hard time meeting complex requirements and they would be well served by being told the requirements ahead of composing their password to minimize their frustration. I understand that it's more difficult to figure out which directory their so that you display the correct requirements. In our organization, the complexity requirements are set organization-wide, and do not differ between directories. I can't speak for how its done elsewhere. Still crossing my fingers that this issue gets assigned to someone soon.

Coop IT Coordinators added a comment - 06/Jul/2012 7:45 PM

Also I just looked through ~~CWD-1189~~ again. The "improved" complexity message displayed to users (which comes at a very bad time - even when things are going smoothly, password changes can be frustrating for some users) was added around 11/May/09 as part of ~~CWD-1189~~. This issue had 13 votes and was not really addressed to anyone's satisfaction, but was closed.

This issue is actually much older than 14/May/12 and really seems to have been lost in the bug shuffle. Can it get some love?

Coop IT Coordinators added a comment - 06/Jul/2012 7:45 PM Also I just looked through CWD-1189 again. The "improved" complexity message displayed to users (which comes at a very bad time - even when things are going smoothly, password changes can be frustrating for some users) was added around 11/May/09 as part of CWD-1189 . This issue had 13 votes and was not really addressed to anyone's satisfaction, but was closed. This issue is actually much older than 14/May/12 and really seems to have been lost in the bug shuffle. Can it get some love?

Coop IT Coordinators added a comment - 06/Jul/2012 7:32 PM

This is vital for users of the self-service console when complexity requirements are set. At a sufficient level of complexity it is very difficult for a non-technical user to compose an appropriate password without some guidance regarding the requirements.

See Atlassian Answers for more use cases:

https://answers.atlassian.com/questions/17336/some-translates-for-crowd-errors?page=1#67587

Coop IT Coordinators added a comment - 06/Jul/2012 7:32 PM This is vital for users of the self-service console when complexity requirements are set. At a sufficient level of complexity it is very difficult for a non-technical user to compose an appropriate password without some guidance regarding the requirements. See Atlassian Answers for more use cases: https://answers.atlassian.com/questions/17336/some-translates-for-crowd-errors?page=1#67587

Details

Description

Attachments

Issue Links

Forms

Activity

Collapse comment: ArvindA added a comment - 26/Oct/2012 8:47 PM

Expand comment: ArvindA added a comment - 26/Oct/2012 8:47 PM

Collapse comment: Coop IT Coordinators added a comment - 26/Oct/2012 7:54 PM

Expand comment: Coop IT Coordinators added a comment - 26/Oct/2012 7:54 PM

Collapse comment: ArvindA added a comment - 26/Sep/2012 2:14 AM

Expand comment: ArvindA added a comment - 26/Sep/2012 2:14 AM

Collapse comment: Coop IT Coordinators added a comment - 03/Aug/2012 6:21 PM

Expand comment: Coop IT Coordinators added a comment - 03/Aug/2012 6:21 PM

Collapse comment: Coop IT Coordinators added a comment - 06/Jul/2012 7:45 PM

Expand comment: Coop IT Coordinators added a comment - 06/Jul/2012 7:45 PM

Collapse comment: Coop IT Coordinators added a comment - 06/Jul/2012 7:32 PM

Expand comment: Coop IT Coordinators added a comment - 06/Jul/2012 7:32 PM

People

Dates

Time Tracking