Skip to content

Simplify Custom Handling for Compromised Passwords #16223

New issue
New issue
Open
Open
Simplify Custom Handling for Compromised Passwords#16223
Assignees
jzheaux
Labels
in: webAn issue in web modules (web, webmvc)type: enhancementA general enhancement
Milestone
 
6.5.x
@rwinch

Description

@rwinch
rwinch
opened on Dec 5, 2024

Right now it is simple to prevent a user from authenticating when they have a compromised password. However, we should support more flows:

  • Allow the user to authenticate, but force the user to change their password before doing anything else
  • Allow the user to authenticate, but post a warning that the password was compromised
  • Checking when a password is changed

Related gh-15745

Metadata

Metadata

Assignees

Labels

in: webAn issue in web modules (web, webmvc)type: enhancementA general enhancement

Type

No type

Projects

No projects

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions