Disallow low user password reset timeout, impose reasonable minimum

Created on 18 April 2024, 8 months ago
Updated 29 April 2024, 8 months ago

Problem/Motivation

Discovered in ๐Ÿ“Œ Add validation constraints to user.settings Needs work .

@see https://git.drupalcode.org/project/drupal/-/merge_requests/7412#note_298722

Steps to reproduce

Proposed resolution

Remaining tasks

User interface changes

API changes

Data model changes

Release notes snippet

๐Ÿ“Œ Task
Status

Active

Version

11.0 ๐Ÿ”ฅ

Component
User moduleย  โ†’

Last updated about 15 hours ago

Created by

๐Ÿ‡ฎ๐Ÿ‡ณIndia omkar.podey

Live updates comments and jobs are added and updated live.
  • Security improvements

    It makes Drupal less vulnerable to abuse or misuse. Note, this is the preferred tag, though the Security tag has a large body of issues tagged to it. Do NOT publicly disclose security vulnerabilities; contact the security team instead. Anyone (whether security team or not) can apply this tag to security improvements that do not directly present a vulnerability e.g. hardening an API to add filtering to reduce a common mistake in contributed modules.

Sign in to follow issues

Merge Requests

Comments & Activities

Production build 0.71.5 2024