Actions
User Story #64
open
Epic #62: Security Policies and Credentials Management
Feature #71: Password Security Policies
As an administrator, I want to configure password reset and recovery policies
User Story #64:
As an administrator, I want to configure password reset and recovery policies
Start date:
02/04/2026
Due date:
% Done:
0%
Estimated time:
Description
Control how users can reset forgotten passwords, including expiration times for reset links and verification methods.
Acceptance Criteria:
- Can set reset link expiration time (e.g., 15 minutes to 24 hours)
- Can require email verification for reset
- Can require security questions (optional)
- Can enable/disable self-service password reset
- Reset attempts are rate-limited to prevent abuse
- Audit log records all password reset events
Updated by
Actions