PrivacyPack
Category: Auth and User Management
—
Other products by this author
Current release: PrivacyPack 1.0
Released Jul 11, 2007 — tested with Plone 2.1
First release publicly available. PrivacyPack improves Plone tools for users and password management.
Experimental releases
There are no experimental releases available at the moment.
Project Description
- Project resources
In PrivacyPack, Plone registration tool has been rewritten to give
- control over password construction
- password duration settings
- control methods on password expiration
- user redirection on "change password" form when password is expired
- lost password recovery
ZMI custom settings include:
- minimum password lenght
- regexp patterns(*) to validate acceptable passwords
- password duration
- further validation rules that compare a password with userID and previously used passwords
- configurable mail address to receive notification of password-reset request
(*) Examples of regexp patterns to Enforce Password Complexity:
A regular expression enforcing the following rules:
* Must be at least 10 characters
* Must contain at least one one lower case letter, one upper case letter, one digit and one special character
* Valid special characters (which are configurable) are - @#$%^&+=
^.*(?=.{10,})(?=.*\d)(?=.*[a-z])(?=.*[A-Z])(?=.*[@#$%^&+=]).*$
A regular expression enforcing the following rules:
* Must contain at least one one lower case letter, one upper case letter, one digit and one special character
* Valid special characters: all
^.*(?=.*\d)(?=.*[a-z])(?=.*[A-Z])(?=.*[\W]).*$
Release notes
Works with plone 2.1
Validation requires plain text passwords
Not tested with others authentication tools (remember/membrane, LDAP)
Planned:
Porting to plone 2.5 / 3.0
More settings available to the users eg:
- password strenght-o-meter
- user can request to auto-generate secure password
- tools and widget for autojoin (legal notes to be subscribed in registration form)
Collection of prebuilded regexp for common use-cases
Collection of disclaimer templates
Guidelines for administrators to meet italian laws privacy requirements