Blog Documentation Try Vanilla Cloud
Vanilla 1 is no longer supported or maintained. If you need a copy, you can get it here.
HackerOne users: Testing against this community violates our program's Terms of Service and will result in your bounty being denied.

Password policies

leonardleonard
edited February 2007 in Vanilla 1.0 Help
Knowing that users are inclined to choose poor passwords, is there going to be an option build into Vanilla to let the application generate the user passwords instead? I would suppose developing and add-on is not an option here, as the application dialog has hardcoded password fields in it which would suggest to the user (s)he can pick a password. Or is there a way an add-on could disable those fields in the application form?

Comments

  • y2kbgy2kbg New
    hmm well a theme mod could take care of eliminating the field, someone here could probably make the generater, but not me.
  • leonardleonard
    edited February 2007
    Code to generate a password which avoid charachter set issues and troublesome characters is easy enough: generate_password() { $nc = 8; // number of characters, f.e. 8, should be an option $s = ''; for ($i = 0; $i < $nc; $i++) { // exclude double and single quote, percent sign, plus and backslash // to avoid troubles with url escaping $n = 34; while ($n == 34 || $n == 37 || $n == 39 || $n == 43 || $n == 92) $n = mt_rand(33, 126); $s .= chr($n); } return $s; }
  • StashStash
    I would have thought an extension would handle this fine. All it would need to do is generate a password and then use a bit of JS to autofill the password field. That should do the trick no?
This discussion has been closed.