You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
For internal users, administrator should tell the users their password in plain text. If the user doesn't change his/her password, then it may become a security issue.
The better way is that, administrator create a user with default password, and the user's state can be set to "wait for a password change" (other than active / inactive). Users in this state should login in WebUI and the system will urge him/her to change password, before the password is changed, the user cannot access any of the resources.
Proposed solution
Add a user state like "wait for a password change" (other than active / inactive).
On the user creation page, add a checkbox "User must change password on next login", and it's default checked. If it's checked, then the state "wait for a password change" is ON for this user.
When the "wait for a password change" state is ON, then the user cannot access any resource except the password change page.
When the user's password is changed, the "wait for a password change" state is automatically changed to OFF.
The text was updated successfully, but these errors were encountered:
Feature Request
Problem to be solved
For internal users, administrator should tell the users their password in plain text. If the user doesn't change his/her password, then it may become a security issue.
The better way is that, administrator create a user with default password, and the user's state can be set to "wait for a password change" (other than active / inactive). Users in this state should login in WebUI and the system will urge him/her to change password, before the password is changed, the user cannot access any of the resources.
Proposed solution
The text was updated successfully, but these errors were encountered: