Currently when a new user registers to XWiki the only limitation for the password is to have minimum 6 characters.
To increase the level os security for users logging it to XWiki it would be nice to have an application that would allow an admin of the wiki to configure and enforce stronger passwords when a user registers/changes the password:
- allow to setup what conditions to be met when the password is type (e.g. Caps, numbers, symbols)
- enforce verification of the password strength (don't allow any passwords that are too weak)
- enforce the user to change the password before he starts using the wiki
- when a user changes the password eliminate often used passwords