Self Service Password 1.6 released!

ℹ What is Self Service Password?

LDAP Tool Box Self Service Password is a web application for end users. It allows them to change or reset their password (mail, SMS, questions) if they lost it.

It works with any LDAP directory, including Active Directory.

ssp-1.6.png

Advanced features:

Mail notifications
REST API
Pre/Post hooks
Secondary passwords
SSH key change
Mail and phone modification by end user
LDAP password policy support
Many checks on password strength: size, characters, dictionary, LDAP attributes, Have I been pawned, zxcvbn, ...

A lot of changes on PHP dependencies and packaging have been made, please read carefully upgrade notes!

🌟 What's new?

This is a major version with some new features:

Attributes update: users can now modify the mail and phone used to reset their password
Entropy: based on zxcvbn library, we now provide an entropy check bar
Dynamic criteria validation: when user enter the new password, all criteria are checked dynamically, so that user sees directly if the password is strong enough
Custom password fields: passwords stored in other LDAP attributes can be changed independently from the master password

And a lot of translation updates, improvements and bug fixes.

📃 Changelog

See full changelog on github .

🤝 Contributors

Self Service Password is mostly maintained by Worteks: @coudot, @davidcoutadeur

Thanks a lot to all contributors: @berkaycagir, @piang0, @natanjunges, @armfem, @iotaka, @campolargo, @markus-96

Some features were sponsored by organizations: SDIS 91, SIEEEN

⬇ Download

Use the official repositories (Debian/RPM), official Docker image or get the archives.