server

Author	SHA1	Message	Date
Lukas Reschke	805419bb95	Add bruteforce protection to changePersonalPassword While the risk is actually quite low because one would already have the user session and could potentially do other havoc it makes sense to throttle here in case of invalid previous password attempts. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>	2017-04-18 17:55:51 +02:00
Morris Jobke	c84dc6aa1c	Properly catch password policy hint for personal page password changes Signed-off-by: Morris Jobke <hey@morrisjobke.de>	2016-10-06 10:55:33 +02:00
Roeland Jago Douma	789082e014	Add tests for ChangePasswordController	2016-08-17 10:21:18 +02:00