You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@clerezza.apache.org by "franco fallica (JIRA)" <ji...@apache.org> on 2011/07/14 10:40:00 UTC

[jira] [Created] (CLEREZZA-607) Automatic generation of user passwords

Automatic generation of user passwords
--------------------------------------

                 Key: CLEREZZA-607
                 URL: https://issues.apache.org/jira/browse/CLEREZZA-607
             Project: Clerezza
          Issue Type: New Feature
            Reporter: franco fallica
            Priority: Minor


On the user admin add-user page, it would be nice to have a button that automatically generates a (strong) password. 


--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira

[jira] [Commented] (CLEREZZA-607) Automatic generation of user passwords

Posted by "Henry Story (JIRA)" <ji...@apache.org>.

    [ https://issues.apache.org/jira/browse/CLEREZZA-607?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13065158#comment-13065158 ] 

Henry Story commented on CLEREZZA-607:
--------------------------------------

I just meant using WebID is the right solution to getting out of password hell.  I have never seen a site help you to create a password. But this is what the Firefox Weave team have been working on. An article to consider is:

   http://weblogs.mozillazine.org/gerv/archives/2011/04/fixing_the_password_problem.html

Firefox weave is the project that is discussed also at the end of the video of http://webid.info/

> Automatic generation of user passwords
> --------------------------------------
>
>                 Key: CLEREZZA-607
>                 URL: https://issues.apache.org/jira/browse/CLEREZZA-607
>             Project: Clerezza
>          Issue Type: New Feature
>            Reporter: franco fallica
>            Priority: Minor
>
> On the user admin add-user page, it would be nice to have a button that automatically generates a (strong) password. 

--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira

[jira] [Commented] (CLEREZZA-607) Automatic generation of user passwords

Posted by "franco fallica (JIRA)" <ji...@apache.org>.

    [ https://issues.apache.org/jira/browse/CLEREZZA-607?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13065153#comment-13065153 ] 

franco fallica commented on CLEREZZA-607:
-----------------------------------------

I too think it would be easy to implement it with some little javascript that generates a random string about 6-10 characters long and put into the pw field when clicked on a button. there also shoud be a "show password" button since the pw field would only show *** (stars). 


I would like to propose a patch. But I hardly find time for it here at work. But I might find some time during my free time to do it. It would be my first patch - is there a HowTo that explains how one should do it? 



> Automatic generation of user passwords
> --------------------------------------
>
>                 Key: CLEREZZA-607
>                 URL: https://issues.apache.org/jira/browse/CLEREZZA-607
>             Project: Clerezza
>          Issue Type: New Feature
>            Reporter: franco fallica
>            Priority: Minor
>
> On the user admin add-user page, it would be nice to have a button that automatically generates a (strong) password. 

--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira

[jira] [Commented] (CLEREZZA-607) Automatic generation of user passwords

Posted by "Henry Story (JIRA)" <ji...@apache.org>.

    [ https://issues.apache.org/jira/browse/CLEREZZA-607?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13065117#comment-13065117 ] 

Henry Story commented on CLEREZZA-607:
--------------------------------------

That is better left to your browser or operating system, since they have to then save it. If you want a strong password, use the WebID tool. That will tie you straight into crypto world. See http://webid.info/ to see how it works in zz.

> Automatic generation of user passwords
> --------------------------------------
>
>                 Key: CLEREZZA-607
>                 URL: https://issues.apache.org/jira/browse/CLEREZZA-607
>             Project: Clerezza
>          Issue Type: New Feature
>            Reporter: franco fallica
>            Priority: Minor
>
> On the user admin add-user page, it would be nice to have a button that automatically generates a (strong) password. 

--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira

[jira] [Commented] (CLEREZZA-607) Automatic generation of user passwords

Posted by "Reto Bachmann-Gmür (JIRA)" <ji...@apache.org>.

    [ https://issues.apache.org/jira/browse/CLEREZZA-607?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13065150#comment-13065150 ] 

Reto Bachmann-Gmür commented on CLEREZZA-607:
---------------------------------------------

Sounds like a handy little feature. I don't understand Henry's point, as you' re talking about the user admin here and there the browser does not have to save it, also I don't see why one should use the "WebID tool" for generating a password (if there is a password generator there I think its misplaced).

On the server one could use org.wymiwyg.commons.util.Util.createRandomString(8) to generate it, but I think the best would be to solve this issue purely on the client-side, a little button or link to fill in a random pwd. 

@franco do you feel like proposing a patch? I would then apply it.

> Automatic generation of user passwords
> --------------------------------------
>
>                 Key: CLEREZZA-607
>                 URL: https://issues.apache.org/jira/browse/CLEREZZA-607
>             Project: Clerezza
>          Issue Type: New Feature
>            Reporter: franco fallica
>            Priority: Minor
>
> On the user admin add-user page, it would be nice to have a button that automatically generates a (strong) password. 

--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira

[jira] [Commented] (CLEREZZA-607) Automatic generation of user passwords

Posted by "Reto Bachmann-Gmür (JIRA)" <ji...@apache.org>.

    [ https://issues.apache.org/jira/browse/CLEREZZA-607?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13065163#comment-13065163 ] 

Reto Bachmann-Gmür commented on CLEREZZA-607:
---------------------------------------------

Not sure if its important to show *** by default, I think this is important where the user enter her own passwords but in most cases the admin should be able to protect himself against spectators when creating accounts.

I don't know about a patch howto ut it's fairly easy:
- check out the sources from svn
- change them as needed
- run svn diff and pipe the output to a file, e.g. svn diff > CLEREZZA-607-platform.accountcontrolpanel.diff

Attach the diff to the issue, ideally mentioning from which directory the diff was made (e.g. trunk/parent/platform.accountcontrolpanel)


> Automatic generation of user passwords
> --------------------------------------
>
>                 Key: CLEREZZA-607
>                 URL: https://issues.apache.org/jira/browse/CLEREZZA-607
>             Project: Clerezza
>          Issue Type: New Feature
>            Reporter: franco fallica
>            Priority: Minor
>
> On the user admin add-user page, it would be nice to have a button that automatically generates a (strong) password. 

--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira