Safety Passwords

This plugin enforces users to use strong passwords. It means that when a user changes his password, the password must contain at least:

• one uppercase letter;
• one lowercase letter;
• one number;

• one special character

  and should be never used before.

The minimum length of the password is defined by the plugin’s settings.

You can also define the period of time after which the user will be forced to change his password.

The important feature of the plugin is settings defining by means of PHP constants.

• SAFETY_PASSWORDS_MIN_LENGTH – (int/string, number of symbols) the minimum length of the password;
• SAFETY_PASSWORDS_RESET_INTERVAL – (int/string, days) the period of time after which the user will be forced to change his password;
• SAFETY_PASSWORDS_RP_ON_REGISTRATION – (bool) whether enforce users to change their password after registration or not.

Integrations with other plugins:

• The plugin has integration with the Stream plugin.

Plugin development is on the GitHub.

1. Upload plugin to the /wp-content/plugins/ directory
2. Activate the plugin through the \’Plugins\’ menu in WordPress
3. Go to Safety Passwords settings page and configure the plugin.

1. 

   Settings page

2. 

   Setting are overridden by PHP constants

3. 

   Password change notification

4. 

   Password change urgency notification

5. 

   Seamless password change form

6. 

   Weak password is not allowed

1.4.2

• Dependencies updated.

1.4.1

• Put currently used passwords to the stop list on activation.

1.4

• Previously used password are not allowed to use again.

1.3

• Fatal error on cron event fixed in php 8. https://github.com/hokoo/safety-passwords/issues/6
• Text of a log message fixed.
• php.ini added for local dev.
• error log watcher git fixed for local dev.

1.2

• Stream plugin integration fixed. https://github.com/hokoo/safety-passwords/issues/11

1.1

• Failing to set 0 as the password reset interval and 1 as the minimum password length fixed.

1.0

• Initial release