Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Enforce password policy for shared links #3089

Closed
BornToBeRoot opened this issue Mar 16, 2020 · 2 comments · Fixed by #7473
Closed

Enforce password policy for shared links #3089

BornToBeRoot opened this issue Mar 16, 2020 · 2 comments · Fixed by #7473
Assignees
@nickvergessen
Labels
3. to review enhancement feature: api 🛠️ OCS API for conversations, chats and participants feature: frontend 🖌️ "Web UI" client
Milestone
v15.0.0-beta.1

Comments

@BornToBeRoot
Copy link

The password policy under Administration/Security is not applied on shared links in talk.
image

Since it is a general security setting (and not only for sharing files), it should apply to every shared link including talk rooms.

Describe the solution you'd like

  1. The password field in talk should respect the settings in Administration/Security/Password policy
    image

  2. There should be an option (like in Administration/Sharing) to enforce password protection for talk conversations. This would prevent users from creating rooms without a password.
    image

  3. People invited by mail should get a second e-mail with a custom password for this talk conversation (like sharing via mail).
    image
@BornToBeRoot BornToBeRoot mentioned this issue Mar 16, 2020
Closed
@nickvergessen nickvergessen added 1. to develop feature: api 🛠️ OCS API for conversations, chats and participants feature: frontend 🖌️ "Web UI" client and removed 0. Needs triage labels Mar 17, 2020
@nickvergessen nickvergessen added this to the 💔 Backlog milestone Mar 17, 2020
@nickvergessen
Copy link
Member

Event to trigger:
https://github.com/nextcloud/server/blob/215aef3cbdc1963be1bb6bca5218ee0a4b7f1665/lib/public/Security/Events/ValidatePasswordPolicyEvent.php#L33

This was referenced Jun 10, 2022
Closed
Merged
@michag86
Copy link

Has this really been fully implemented?

I cannot find an option to enforce all link shares to be password protected.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@nickvergessen nickvergessen

Labels
3. to review enhancement feature: api 🛠️ OCS API for conversations, chats and participants feature: frontend 🖌️ "Web UI" client
Projects
💬 Talk team
Archived in project
Milestone
v15.0.0-beta.1
Development

Successfully merging a pull request may close this issue.

Implement password policy checker nextcloud/spreed
5 participants
@nickvergessen @vitormattos @michag86 @BornToBeRoot @danxuliu