password_policy 4.0.1

Git tag 4.0.1
Bug fixes
New features

See #3421207: Create Password Policy 4.0.1 release..

password_policy 4.0.x-dev

Git branch 4.0.x

Dev branch

password_policy 4.0.0

Git tag 4.0.0
Bug fixes
New features

Thanks for using the password policy module.

Enjoy the new release!

Changes since 8.x-3.2 release:

password_policy 8.x-3.2

Git tag 8.x-3.2
Bug fixes
New features

Thanks for using the password policy module.

Enjoy the new release!

Changes since 8.x-3.1 release:

password_policy 8.x-3.1

Git tag 8.x-3.1
Bug fixes
New features

Thanks for using the password policy module.

Enjoy the new release!

password_policy 8.x-3.0

Git tag 8.x-3.0
Bug fixes

Our first full release - lots of issues merged, many improvements to automated tests and module compatibilities.

password_policy 8.x-3.0-beta1

Git tag 8.x-3.0-beta1
Bug fixes
New features

Drupal 9 compatibility and many various improvements

password_policy 8.x-3.0-alpha5

Git tag 8.x-3.0-alpha5
Bug fixes
New features

Changes since 8.x-3.0-alpha4:
#2956550 by Sivaprasad C, AohRveTPV: Fix dependency declaration
#2948046 by emartoni: Configuration link is wrong on README.md
#2843326 by aamouri, voleger: Missing use t() function for some messages
#2856294 by Znak: Deprecated methods

password_policy 7.x-2.0-alpha8

Git tag 7.x-2.0-alpha8
Bug fixes
New features

Changes since 7.x-2.0-alpha7:

password_policy 7.x-1.16

Git tag 7.x-1.16
Security update
Bug fixes

See Password Policy - Less critical - Denial of Service - SA-CONTRIB-2018-077

Other changes since 7.x-1.15:

password_policy 7.x-1.15

Git tag 7.x-1.15
Bug fixes
New features
Insecure

Changes since 7.x-1.14:

password_policy 8.x-3.0-alpha4

Git tag 8.x-3.0-alpha4
Bug fixes
New features

Numerous bug fixes and a new consecutive character constraint

password_policy 7.x-1.14

Git tag 7.x-1.14
Bug fixes
Insecure

This release fixes a bug that could, under certain circumstances, prevent users from setting or changing passwords.

A site is affected by the bug only if it is using the "Character Types" ("Complexity") constraint and the module was updated from 7.x-1.11 or lower directly to 7.x-1.13, skipping 7.x-1.12. See #2873715: Update 7105 faulty under certain circumstances for details.

password_policy 7.x-1.13

Git tag 7.x-1.13
Bug fixes
New features
Insecure

Changes since 7.x-1.12:

password_policy 7.x-2.0-alpha7

Git tag 7.x-2.0-alpha7
Bug fixes
New features

Changes since 7.x-2.0-alpha6:

password_policy 8.x-3.0-alpha3

Git tag 8.x-3.0-alpha3
Bug fixes
New features

Many improvements and bug fixes.

password_policy 8.x-3.0-alpha2

Git tag 8.x-3.0-alpha2
Bug fixes

-Fixes install/uninstall
-Leverages better CMI practices for created fields
-Other various improvements

password_policy 7.x-2.0-alpha6

Git tag 7.x-2.0-alpha6
Bug fixes
New features

Changes since 7.x-2.0-alpha5:

password_policy 8.x-3.0-alpha1

Git tag 8.x-3.0-alpha1
Bug fixes
New features

This alpha release supports all Drupal 8 beta changes to date, automated tests, and all known issues raised during testing.

This release currently supports password policies, password reset management and enforcement, and a pluggable system for extending password constraint types.

password_policy 7.x-1.12

Git tag 7.x-1.12
Bug fixes
New features
Insecure

Changes since 7.x-1.11:

password_policy 8.x-3.x-dev

Git branch 8.x-3.x
New features

Initial 8.x release

password_policy 7.x-2.0-alpha5

Git tag 7.x-2.0-alpha5
Bug fixes
New features

Changes since 7.x-2.0-alpha4:

password_policy 6.x-1.11

Git tag 6.x-1.11
Security update
Bug fixes

See Password Policy - Critical - Cross Site Scripting (XSS) - SA-CONTRIB-2015-090

Other changes since 6.x-1.10:

password_policy 7.x-1.11

Git tag 7.x-1.11
Security update
Bug fixes
Insecure

See Password Policy - Critical - Cross Site Scripting (XSS) - SA-CONTRIB-2015-090

Other changes since 7.x-1.10:

password_policy 7.x-2.0-alpha4

Git tag 7.x-2.0-alpha4
Bug fixes

Changes since 7.x-2.0-alpha3:

password_policy 6.x-1.10

Git tag 6.x-1.10
Bug fixes
Insecure

Changes since 6.x-1.9:

  • #2357511 by Ranieri Machado: !mailto token not working
  • Improved some code per Coder Review.

password_policy 7.x-1.10

Git tag 7.x-1.10
Bug fixes
Insecure

Changes since 7.x-1.9:

password_policy 6.x-1.9

Git tag 6.x-1.9
Bug fixes
New features
Insecure

This release adds compatibility with the Secure Password Hashes module. If your site uses both the Secure Password Hashes and Password Policy modules, you are advised to upgrade to this release.

Prior to this release, the following Password Policy features did not work properly with Secure Password Hashes installed:

  • History constraint
  • Forced password changes

Other changes since 6.x-1.8:

password_policy 6.x-1.8

Git tag 6.x-1.8
Security update
Bug fixes
Insecure

Fixes SA-CONTRIB-2014-070 - Password Policy - Access Bypass

Other changes since 6.x-1.7:

password_policy 7.x-1.9

Git tag 7.x-1.9
Security update
Bug fixes
Insecure

Fixes SA-CONTRIB-2014-070 - Password Policy - Access Bypass

Other changes since 7.x-1.8:

password_policy 7.x-2.0-alpha3

Git tag 7.x-2.0-alpha3
Bug fixes

This release fixes a "division by zero" error that could occur when upgrading to 7.x-2.0-alpha2. The error is harmless, but could cause uncertainty over whether the updates completed successfully.

Changes since 7.x-2.0-alpha2:

  • #2289023 by izus, AohRveTPV: password_policy.install division by zero

password_policy 7.x-1.8

Git tag 7.x-1.8
Bug fixes
Insecure

This release is mainly to fix a "division by zero" error that could occur when upgrading to 7.x-1.7. The error is harmless, but could cause uncertainty over whether the updates completed successfully.

Changes since 7.x-1.7:

password_policy 7.x-2.0-alpha2

Git tag 7.x-2.0-alpha2
Security update
Bug fixes
New features

IMPORTANT: If your site used Password Policy 6.x in the past:

  • You should back up your database prior to applying this update to minimize risk of losing password history due to unforeseen update problems.
  • Be warned that the database updates might take a long time to run for sites with many users.

New constraints:

password_policy 7.x-1.7

Git tag 7.x-1.7
Security update
Bug fixes
New features
Insecure

IMPORTANT: If your site used Password Policy 6.x in the past:

  • You should back up your database prior to applying this update to minimize risk of losing password history due to unforeseen update problems.
  • Be warned that the database updates might take a long time to run for sites with many users.

Changes since 7.x-1.6:

password_policy 6.x-1.7

Git tag 6.x-1.7
Security update
Bug fixes
Insecure

Changes since 6.x-1.6:

password_policy 7.x-1.6

Git tag 7.x-1.6
Security update
Insecure

Issues in this release:
Fixes SA-CONTRIB-2014-057 - Password policy - General logic error

password_policy 7.x-1.5

Git tag 7.x-1.5
Security update
Insecure

Validate user input and add check_plain for display of the "Password Expiration Warning" field

SA-CONTRIB-2013-069 - Password Policy - XSS

password_policy 6.x-1.6

Git tag 6.x-1.6
Security update
Insecure

Validate user input and add check_plain for display of the "Password Expiration Warning" field

SA-CONTRIB-2013-069 - Password Policy - XSS

password_policy 7.x-1.4

Git tag 7.x-1.4
New features
Bug fixes
Insecure

#1883684: Update schema for D7 upgrade
#2000284: History constraint assumes hash method

password_policy 7.x-2.0-alpha1

Git tag 7.x-2.0-alpha1
New features
Insecure

First alpha release of 7.x-2.x

password_policy 7.x-1.3

Git tag 7.x-1.3
Security update
Bug fixes
Insecure

Removes client-side password checks and fixes a PHP warning on account save. See SA-CONTRIB-2012-159 - Password policy - Information leakage of hashed passwords for more details.

password_policy 6.x-1.5

Git tag 6.x-1.5
Security update
New features
Bug fixes
Insecure

password_policy 7.x-1.2

Git tag 7.x-1.2
New features
Bug fixes
Insecure

Password tab is finally ported to Drupal 7!

Also, the API used for constraints has changed. Please see this change record for more information - Password policy constraints now use submitted user account rather than database to check for password compliance.

New features -

password_policy 7.x-1.1

Git tag 7.x-1.1
New features
Insecure

The username constraint now checks for the username anywhere in the password, rather than the exact password. This should probably have been the behavior all along and won't directly affect existing passwords.

Changes since 7.x-1.0:

password_policy 7.x-2.x-dev

Git branch 7.x-2.x
New features
Bug fixes

Full CTools-based rewrite of Password Policy for D7.

password_policy 7.x-1.0

Git tag 7.x-1.0
New features
Bug fixes
Insecure

It's about time for an official D7 release!

Changes since 7.x-1.0-rc3 -

  • #1539196: Delay constraint issues fatal error when account has not yet been created
  • #1463568: Expired Password Issue
  • #1251756: True unicode support

password_policy 7.x-1.0-rc3

Git tag 7.x-1.0-rc3
New features
Bug fixes
Insecure

#1515596: Password Policy throwing Notice: Undefined property: stdClass::$name on Features Recreate page by shadybar
#1251756: True unicode support

password_policy 7.x-1.0-rc2

Git tag 7.x-1.0-rc2
Bug fixes
Insecure

#1415416: password_policy_user_login() uses D6 style db queries
#958794: Add a short description above policies for user

password_policy 7.x-1.0-rc1

Git tag 7.x-1.0-rc1
New features
Bug fixes
Insecure

In an effort to get a final version out, Password Policy will be feature-frozen for the time being as the few remaining bugs are resolved.

password_policy 7.x-1.0-beta4

Git tag 7.x-1.0-beta4
Bug fixes
Insecure

#1315696: constraint_delay.inc still uses D6 database functions
#1252666: hook_user uses outdated D6 ops - move 'register' and 'form' ops to form_alter's

Pages

Subscribe with RSS Subscribe to Releases for Password Policy