Details
Improvement
Major
Description
Feature request @ https://requests.blesta.com/topic/admin-ability-to-config-client-password-requirements
When Plesk provisions accounts, the passwords it generates are not secure enough for Plesk's default password security. The default security of password in Plesk are set as "Strong" with the following definition:
- At least 8 characters
- At least one uppercase letter
- At least one lowercase letter
- At least one digit
- At least one special character
Plesk also has a "Very Strong" password option, that has the following requirements. It may be worth considering generating passwords to meet this standard so that it will be sufficient regardless of the configuration of Plesk:
- At least 16 characters
- Include multiple occurrences of uppercase letters
- Include multiple occurrences of lowercase letters
- Include multiple occurrences of digits
- Include multiple occurrences of special characters
Originally reported here, see also for screenshot of Plesk password strength settings. https://www.blesta.com/forums/index.php?/topic/7633-plesk-module-bugs/
Activity
The JS password generator would work for resetting the password as a client or admin, but we would still need to generate the password automatically in PHP to pass to Plesk.
Maybe a separate task for the JS password generator in the staff/client area for resets?
Paul Phillips
added a comment - The JS password generator would work for resetting the password as a client or admin, but we would still need to generate the password automatically in PHP to pass to Plesk.
Maybe a separate task for the JS password generator in the staff/client area for resets? 
This looks like a good task to employ the JS password generator from
CORE-552