Enforce Password change on First login and expire password after preset number of days
Proposers
- Selvi Jayaraman (Tata Elxsi)
- Ramesh Ramanathan (Tata Elxsi)
Description
-
After creating a new user in OSM, the newly created user needs to change the default password on the first successful login.
-
Introducing the password expiry feature, the created password is preset with a time limit of 30 days by default. Number of days can be customized in the configuration file. Once the password got expired, it will force the user to change the password while logging in. This password check is excluded for the default "admin" user.
Demo or definition of done
UseCase 1: Enforcing change password on first login of user
Creating a new user and login with default credentials, OSM will enforce the user to change the default credentials on login.
UseCase 2: Password expiry scenario
Once the password gets expired, users will be mandated to change the password.