Add counts of legacy password hashes

Created on 17 May 2023, over 1 year ago

Updated 22 May 2023, over 1 year ago

Problem/Motivation

The Password Compatibility → module was added in Drupal 10.1.0. When sites are upgraded from older versions of Drupal, the module should be installed automatically, and it allows users to log in with their existing passwords. Once a password has been used with the Password Compatibility module, that password can be used in the future whether or not the module is installed.

Site administrators need some guidance to decide when to uninstall the module.

Proposed resolution

Provide information about how many passwords have not been used since the site was upgraded to Drupal 10.1.0 or later.

There is already a contrib module, Password Stats → , that provides this information. We can borrow some of its code and add it to the core Password Compatibility module.

Show additional information

On the site status report
On the main help page for the Password Compatibility module

Remaining tasks

User interface changes

API changes

None

Data model changes

None

Release notes snippet

N/A

📌 Task

Status

Active

Version

10.1 ✨

Component

User module →

Last updated 11 minutes ago

Maintained by
🇺🇸United States @moshe weitzman
🇧🇪Belgium @kristiaanvandeneynde

Created by

🇺🇸United States benjifisher Boston area

Live updates comments and jobs are added and updated live.

Comments & Activities

Issue created by @benjifisher
First commit to issue fork.
Comment over 1 year ago →
🇬🇧United Kingdom catch
This is somewhat of a duplicate of 📌 Notify users that they need to reset their password when it matches an unsupported hash type Active but there's one part of the issue summary that's not covered here, so I slightly repurposed that issue.

contrib.social Blog FAQ Discussions

Production build 0.71.5 2024