diff options
author | Roeland Jago Douma <roeland@famdouma.nl> | 2018-02-24 18:14:16 +0300 |
---|---|---|
committer | Roeland Jago Douma <roeland@famdouma.nl> | 2018-02-26 14:51:21 +0300 |
commit | fed9c37ff620cb74dc027a5a40b27313e26c5ba3 (patch) | |
tree | c98cabc1963f57629556eb9b161127b540ba99ed /templates | |
parent | c3d0f7a88f8742e55381780b716077182bf74e95 (diff) |
Allo to check against haveibeenpwned.com password list
fixes #58
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
Diffstat (limited to 'templates')
-rw-r--r-- | templates/settings-admin.php | 8 |
1 files changed, 8 insertions, 0 deletions
diff --git a/templates/settings-admin.php b/templates/settings-admin.php index f38ad35..2c7e485 100644 --- a/templates/settings-admin.php +++ b/templates/settings-admin.php @@ -55,4 +55,12 @@ style('password_policy', 'settings-admin'); value="1" <?php if ($_['enforceSpecialCharacters']) print_unescaped('checked="checked"'); ?> /> <label for="password-policy-enforce-special-characters"><?php p($l->t('Enforce special characters'));?></label><br/> </p> + <p id="enforceHaveIBeenPwned"> + <input type="checkbox" name="password-policy-enforce-have-i-been-pwned" id="password-policy-enforce-have-i-been-pwned" class="checkbox" + value="1" <?php if ($_['enforceHaveIBeenPwned']) print_unescaped('checked="checked"'); ?> /> + <label for="password-policy-enforce-have-i-been-pwned"><?php p($l->t('Check password against the list of breached passwords from haveibeenpwnd.com'));?></label><br/> + </p> + <p class="password-policy-settings-hint"> + This check creates a hash of the password and sends the first 5 characters of this hash to the haveibeenpwnd.com API to retrieve a list of all hashes that start with those. Then it checks on the Nextcloud instance if the password hash is in the result set. + </p> </div> |