BibCite

Allow users to change own passwords

Registered by Prunus dulcis on 2010-07-17

Allow users to change their passwords. Right now, the password is directly used for encrypting / decrypting fields and files, if private. It may be better to store a random encryption/decryption-password in the database, which is encrypted with the userpassword. So if the userpassword is changed, the enc-dec-password is decrypted with the old userpassword and decrypted with the new userpassword and no files or other encrypted entries have to be changed and will continue to work.

Blueprint information

Status:: Complete

Approver:: Prunus dulcis

Priority:: Medium

Drafter:: Prunus dulcis

Direction:: Approved

Assignee:: Prunus dulcis

Definition:: Approved

Series goal:: Accepted for 10.12

Implementation:: Implemented

Milestone target:: 10.12

Started by: Prunus dulcis on 2010-08-28

Completed by: Prunus dulcis on 2010-11-18

Related branches

Related bugs

Bug #675789: After password change, decryption of private content gives error

Fix Released

Sprints

Whiteboard

Password change dialogue GUI is implemented and the events have been implemented as well.
The underlying framework now has a auto-generated password [permanentPassword], encrypted and decrypted by user-login-password.
If user-login-password, the auto-generated password [permanentPassword] needs to be decrypted with old login password and then encrypted with new user chosen login-password.

(?)

Work Items

This blueprint contains Public information

Everyone can see this information.

Subscribers

No subscribers.