Calling Developers!
We are reenergizing our code contribution process! Learn More

What are the Slack Archives?

It’s a history of our time together in the Slack Community! There’s a ton of knowledge in here, so feel free to search through the archives for a possible answer to your question.

Because this space is not active, you won’t be able to create a new post or comment here. If you have a question or want to start a discussion about something, head over to our categories and pick one to post in! You can always refer back to a post from Slack Archives if needed; just copy the link to use it as a reference..

Hi everyone! I'm looking to prevent users from resetting and using their current password as their n

Options
U03U26J38KG
U03U26J38KG Posts: 7 🧑🏻‍🚀 - Cadet

Hi everyone!
I'm looking to prevent users from resetting and using their current password as their new password as well as preventing their username from being used as a password.

What would be the best way to accomplish this? Is it possible to retrieve the current password and username and somehow add it to the deny list found in CustomerConfig.php .

Comments

  • Alberto Reyer
    Alberto Reyer Lead Spryker Solution Architect / Technical Director Posts: 690 🪐 - Explorer
    Options

    You can implement \Spryker\Zed\Customer\Business\CustomerPasswordPolicy\CustomerPasswordPolicyInterface and add your policy implementations in \Spryker\Zed\Customer\Business\CustomerBusinessFactory::getCustomerPasswordPolicies

    While I would strongly argue that this should be plugins, it seems this are not plugins yet. But you can see them similar to plugins

  • U03U26J38KG
    U03U26J38KG Posts: 7 🧑🏻‍🚀 - Cadet
    Options

    Awesome! Thanks Alberto

  • Alberto Reyer
    Alberto Reyer Lead Spryker Solution Architect / Technical Director Posts: 690 🪐 - Explorer
    Options

    You'r welcome