Skip to content
This repository has been archived by the owner on Sep 10, 2024. It is now read-only.

Remove OPA-based password policy enforcement #2875

Merged
merged 3 commits into from
Jul 16, 2024
Merged

Remove OPA-based password policy enforcement #2875

merged 3 commits into from
Jul 16, 2024

Conversation

reivilibre
Copy link
Contributor

@reivilibre reivilibre commented Jun 26, 2024
edited
Loading

The OPA-based policies are too opaque and complicated; this is a precursor to just using the zxcvbn algorithm, which should let us provide better feedback in real-time to the users. (#172)

@cloudflare-workers-and-pages Cloudflare Workers and Pages
Copy link

cloudflare-workers-and-pages bot commented Jun 26, 2024
edited
Loading

Deploying matrix-authentication-service-docs with  Cloudflare Pages  Cloudflare Pages

Latest commit: 8241059
Status: ✅  Deploy successful!
Preview URL: https://22cf3487.matrix-authentication-service-docs.pages.dev
Branch Preview URL: https://rei-rm-password-policy-eng.matrix-authentication-service-docs.pages.dev

View logs

@reivilibre reivilibre force-pushed the rei/rm_password_policy_eng branch from 27fd30e to c3a782c Compare June 27, 2024 12:42
@reivilibre reivilibre marked this pull request as ready for review June 27, 2024 12:42
@reivilibre reivilibre requested a review from sandhose June 27, 2024 12:42
@reivilibre reivilibre force-pushed the rei/rm_password_policy_eng branch from c3a782c to 8efde0e Compare June 28, 2024 16:04
@reivilibre reivilibre force-pushed the rei/rm_password_policy_eng branch from 8efde0e to 9779a21 Compare July 8, 2024 10:58
sandhose
sandhose suggested changes Jul 8, 2024
View reviewed changes
Copy link
Member

@sandhose sandhose left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Could you also remove it from the policy itself?

That would be:

  • the policy/password.rego and policy/password_test.rego files
  • references to policy in the registration policy: here and here
  • remove reference in the policy/Makefile like here
  • remove the password in the registration input here (and regenerate the OPA input schema, which should be handled by misc/update.sh)

@reivilibre reivilibre requested a review from sandhose July 8, 2024 12:20
@reivilibre reivilibre force-pushed the rei/rm_password_policy_eng branch 2 times, most recently from 911f6b2 to 10e58ce Compare July 8, 2024 12:33
@reivilibre reivilibre force-pushed the rei/rm_password_policy_eng branch from 10e58ce to 82a2674 Compare July 8, 2024 14:05
sandhose
sandhose approved these changes Jul 16, 2024
View reviewed changes
Copy link
Member

@sandhose sandhose left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I merged back main as there was a conflict. Sorry that I forgot about this PR, LGTM now 👍

@reivilibre reivilibre merged commit 1afd2a2 into main Jul 16, 2024
16 checks passed
@sandhose sandhose deleted the rei/rm_password_policy_eng branch July 29, 2024 12:06
@matrixbot matrixbot mentioned this pull request Sep 10, 2024
Closed
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@sandhose sandhose sandhose approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@reivilibre @sandhose