You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@clerezza.apache.org by "franco fallica (JIRA)" <ji...@apache.org> on 2011/07/14 10:40:00 UTC
[jira] [Created] (CLEREZZA-607) Automatic generation of user
passwords
Automatic generation of user passwords
--------------------------------------
Key: CLEREZZA-607
URL: https://issues.apache.org/jira/browse/CLEREZZA-607
Project: Clerezza
Issue Type: New Feature
Reporter: franco fallica
Priority: Minor
On the user admin add-user page, it would be nice to have a button that automatically generates a (strong) password.
--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Commented] (CLEREZZA-607) Automatic generation of user
passwords
Posted by "Henry Story (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/CLEREZZA-607?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13065158#comment-13065158 ]
Henry Story commented on CLEREZZA-607:
--------------------------------------
I just meant using WebID is the right solution to getting out of password hell. I have never seen a site help you to create a password. But this is what the Firefox Weave team have been working on. An article to consider is:
http://weblogs.mozillazine.org/gerv/archives/2011/04/fixing_the_password_problem.html
Firefox weave is the project that is discussed also at the end of the video of http://webid.info/
> Automatic generation of user passwords
> --------------------------------------
>
> Key: CLEREZZA-607
> URL: https://issues.apache.org/jira/browse/CLEREZZA-607
> Project: Clerezza
> Issue Type: New Feature
> Reporter: franco fallica
> Priority: Minor
>
> On the user admin add-user page, it would be nice to have a button that automatically generates a (strong) password.
--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Commented] (CLEREZZA-607) Automatic generation of user
passwords
Posted by "franco fallica (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/CLEREZZA-607?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13065153#comment-13065153 ]
franco fallica commented on CLEREZZA-607:
-----------------------------------------
I too think it would be easy to implement it with some little javascript that generates a random string about 6-10 characters long and put into the pw field when clicked on a button. there also shoud be a "show password" button since the pw field would only show *** (stars).
I would like to propose a patch. But I hardly find time for it here at work. But I might find some time during my free time to do it. It would be my first patch - is there a HowTo that explains how one should do it?
> Automatic generation of user passwords
> --------------------------------------
>
> Key: CLEREZZA-607
> URL: https://issues.apache.org/jira/browse/CLEREZZA-607
> Project: Clerezza
> Issue Type: New Feature
> Reporter: franco fallica
> Priority: Minor
>
> On the user admin add-user page, it would be nice to have a button that automatically generates a (strong) password.
--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Commented] (CLEREZZA-607) Automatic generation of user
passwords
Posted by "Henry Story (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/CLEREZZA-607?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13065117#comment-13065117 ]
Henry Story commented on CLEREZZA-607:
--------------------------------------
That is better left to your browser or operating system, since they have to then save it. If you want a strong password, use the WebID tool. That will tie you straight into crypto world. See http://webid.info/ to see how it works in zz.
> Automatic generation of user passwords
> --------------------------------------
>
> Key: CLEREZZA-607
> URL: https://issues.apache.org/jira/browse/CLEREZZA-607
> Project: Clerezza
> Issue Type: New Feature
> Reporter: franco fallica
> Priority: Minor
>
> On the user admin add-user page, it would be nice to have a button that automatically generates a (strong) password.
--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Commented] (CLEREZZA-607) Automatic generation of user
passwords
Posted by "Reto Bachmann-Gmür (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/CLEREZZA-607?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13065150#comment-13065150 ]
Reto Bachmann-Gmür commented on CLEREZZA-607:
---------------------------------------------
Sounds like a handy little feature. I don't understand Henry's point, as you' re talking about the user admin here and there the browser does not have to save it, also I don't see why one should use the "WebID tool" for generating a password (if there is a password generator there I think its misplaced).
On the server one could use org.wymiwyg.commons.util.Util.createRandomString(8) to generate it, but I think the best would be to solve this issue purely on the client-side, a little button or link to fill in a random pwd.
@franco do you feel like proposing a patch? I would then apply it.
> Automatic generation of user passwords
> --------------------------------------
>
> Key: CLEREZZA-607
> URL: https://issues.apache.org/jira/browse/CLEREZZA-607
> Project: Clerezza
> Issue Type: New Feature
> Reporter: franco fallica
> Priority: Minor
>
> On the user admin add-user page, it would be nice to have a button that automatically generates a (strong) password.
--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Commented] (CLEREZZA-607) Automatic generation of user
passwords
Posted by "Reto Bachmann-Gmür (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/CLEREZZA-607?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13065163#comment-13065163 ]
Reto Bachmann-Gmür commented on CLEREZZA-607:
---------------------------------------------
Not sure if its important to show *** by default, I think this is important where the user enter her own passwords but in most cases the admin should be able to protect himself against spectators when creating accounts.
I don't know about a patch howto ut it's fairly easy:
- check out the sources from svn
- change them as needed
- run svn diff and pipe the output to a file, e.g. svn diff > CLEREZZA-607-platform.accountcontrolpanel.diff
Attach the diff to the issue, ideally mentioning from which directory the diff was made (e.g. trunk/parent/platform.accountcontrolpanel)
> Automatic generation of user passwords
> --------------------------------------
>
> Key: CLEREZZA-607
> URL: https://issues.apache.org/jira/browse/CLEREZZA-607
> Project: Clerezza
> Issue Type: New Feature
> Reporter: franco fallica
> Priority: Minor
>
> On the user admin add-user page, it would be nice to have a button that automatically generates a (strong) password.
--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira