Password policy (#82268)

* add password service interface * add password service implementation * add tests for password service * add password service wiring * add feature toggle * Rework from service interface to static function * Replace previous password validations * Add codeowners to password service * add error logs * update config files --------- Co-authored-by: Karl Persson <kalle.persson@grafana.com>
2025-02-25 18:55:37 -06:00 · 2024-02-16 04:58:05 -06:00
parent 846eadff63
commit ac84069071
27 changed files with 300 additions and 105 deletions
--- a/conf/defaults.ini
+++ b/conf/defaults.ini
@@ -812,6 +812,14 @@ use_refresh_token = false
 #################################### Basic Auth ##########################
 [auth.basic]
 enabled = true
+# This setting will enable a stronger password policy for user's password under basic auth.
+# The password will need to comply with the following password policy
+# 1. Have a minimum of 12 characters
+# 2. Composed by at least 1 uppercase character
+# 3. Composed by at least 1 lowercase character
+# 4. Composed by at least 1 digit character
+# 5. Composed by at least 1 symbol character
+password_policy = false

 #################################### Auth Proxy ##########################
 [auth.proxy]
--- a/conf/sample.ini
+++ b/conf/sample.ini
@@ -745,6 +745,7 @@
 #################################### Basic Auth ##########################
 [auth.basic]
 ;enabled = true
+;password_policy = false

 #################################### Auth Proxy ##########################
 [auth.proxy]