{"id":43218824,"url":"https://github.com/move-elevator/me_backend_security","last_synced_at":"2026-02-01T08:31:20.759Z","repository":{"id":37735425,"uuid":"113467366","full_name":"move-elevator/me_backend_security","owner":"move-elevator","description":"Advanced security for the TYPO3 backend","archived":false,"fork":false,"pushed_at":"2023-08-02T07:32:22.000Z","size":239,"stargazers_count":10,"open_issues_count":1,"forks_count":4,"subscribers_count":11,"default_branch":"master","last_synced_at":"2025-10-22T03:28:45.193Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"","language":"PHP","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/move-elevator.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2017-12-07T15:27:45.000Z","updated_at":"2022-11-04T15:25:23.000Z","dependencies_parsed_at":"2022-09-08T23:32:06.833Z","dependency_job_id":null,"html_url":"https://github.com/move-elevator/me_backend_security","commit_stats":null,"previous_names":[],"tags_count":20,"template":false,"template_full_name":null,"purl":"pkg:github/move-elevator/me_backend_security","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/move-elevator%2Fme_backend_security","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/move-elevator%2Fme_backend_security/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/move-elevator%2Fme_backend_security/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/move-elevator%2Fme_backend_security/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/move-elevator","download_url":"https://codeload.github.com/move-elevator/me_backend_security/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/move-elevator%2Fme_backend_security/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":28974127,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-02-01T08:16:14.655Z","status":"ssl_error","status_checked_at":"2026-02-01T08:06:51.373Z","response_time":56,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.6:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2026-02-01T08:31:20.160Z","updated_at":"2026-02-01T08:31:20.755Z","avatar_url":"https://github.com/move-elevator.png","language":"PHP","funding_links":[],"categories":[],"sub_categories":[],"readme":"# TYPO3 Extension \"me_backend_security\"\n\nAn extension to specify secure password rules and force backend users to change their passwords, if the password is older then a defined limit.\n\nIn extension settings you can define:\n* Minimum number of capital characters\n* Minimum number of lowercase characters\n* Minimum number of digits\n* Minimum number of special characters\n* Minimum length of password\n* Maximum days before password must change\n\nIf a backend user logs in and his password needs to change, user will be logged out and redirected to comfortable password change form.\nAfter password was changed, the user will automatically logged in and can start his work in backend.\n\nThe password rules will also be checked when the user tries to change his password in user settings in backend.\n\nUsers imported from extension ig_ldap_sso_auth will be ignored.\n\n## Install and usage\n\n1. Basic install via composer\n\n```\ncomposer req \"move-elevator/me-backend-security\":\"^3.0\"\n```\n\n2. Modify extension settings in TYPO3 backend\n3. Be safer :)\n\n## Checks\nRun each command in the project root directory.\n\n### Execute PHPUnit tests\n\n```\ncomposer phpunit\n```\n\n### Execute PHPCS checks\n\n```\ncomposer phpcs\n```\n\n### Fix PHPCS issues\n\n```\ncomposer phpcs:fix\n```\n\n### Execute PHPSTAN checks\n\n```\ncomposer phpstan\n```\n\n### Execute all quality checks\n\n```\ncomposer php:validate\n```\n\n# Contact\n\n* Mail: typo3@move-elevator.de\n* Website: https://www.move-elevator.de\n\n# Changelog\n2023-07-31 - Ronny Hauptvogel \u003crh@move-elevator.de\u003e\n```\nRelease 3.0.3\n---\nBugfix: Fix backend user generation handling via TYPO3 backend\n```\n\n2023-06-04 - Ronny Hauptvogel \u003crh@move-elevator.de\u003e\n```\nRelease 3.0.2\n---\nBugfix: Fix extension dependency constraints\nBugfix: Fix MFA authentication loop\nFeature: Update password reset login form template\n```\n\n2022-06-22 - Ronny Hauptvogel \u003crh@move-elevator.de\u003e\n```\nRelease 3.0.1\n---\nBugfix: Fix FrontendBackendUserAuthentication issue which will break third-party extension ext_localconf.php files\n```\n\n2022-05-19 - Ronny Hauptvogel \u003crh@move-elevator.de\u003e\n```\nRelease 3.0.0\n---\nFeature: Add TYPO3 11 compatibility\nFeature: PHP 8.0/ 8.1 compatibility\nFeature: Drop TYPO3 9 and 10 support\n```\n\n2021-12-30 - Ronny Hauptvogel \u003crh@move-elevator.de\u003e\n```\nRelease 2.0.7\n---\nFeature: Add password validation rules to password reset form\n```\n\n2021-07-19 - Ronny Hauptvogel \u003crh@move-elevator.de\u003e\n```\nRelease 2.0.6\n---\nBugfix: Fix broken language keys\n```\n\n2021-04-23 - Ronny Hauptvogel \u003crh@move-elevator.de\u003e\n```\nRelease 2.0.5\n---\nFeature: Add .gitattributes file\nFeature: Add composer extension key\nBugfix: Add proper type casting for hooks\n```\n\n2020-12-17 - Ronny Hauptvogel \u003crh@move-elevator.de\u003e\n```\nRelease 2.0.4\n---\nFeature: Add typo3/cms-rsaauth as conflict\n```\n\n2020-12-09 - Ronny Hauptvogel \u003crh@move-elevator.de\u003e\n```\nRelease 2.0.3\n---\nBugfix: Update PHP version constraint to include newer PHP7 versions\n```\n\n2020-11-06 - Ronny Hauptvogel \u003crh@move-elevator.de\u003e\n```\nRelease 2.0.2\n---\nFeature: TYPO3 10 compatibility\nFeature: Allow new special characters to validator\nBugfix: Invalid password length with german umlauts\n```\n\n2019-05-03 - Philipp Heckelt \u003cphe@move-elevator.de\u003e\n```\nRelease 2.0.1\n---\nBugfix: PHP7 typehints for hooks\n```\n\n2019-04-08 - Philipp Heckelt \u003cphe@move-elevator.de\u003e\n```\nRelease 2.0.0\n---\nFeature: TYPO3v9 compatibility\n```\n\n2018-08-06 - Philipp Heckelt \u003cphe@move-elevator.de\u003e\n```\nRelease 1.1.4\n---\nBugfix: Fix detection of existing accounts\n```\n\n2018-02-01 - Philipp Heckelt \u003cphe@move-elevator.de\u003e\n```\nRelease 1.1.3\n---\nBugfix: Validate that the old and new password are not the same in the user settings\nBugfix: Existing accounts no longer must change their password immediately after activating the extension\nFeature: Allow new special characters to validator\n```\n\n2018-01-18 - Philipp Heckelt \u003cphe@move-elevator.de\u003e\n```\nRelease 1.1.2\n---\nBugfix: Fix redirect on non-ssl websites if password change is required\n```\n\n2018-01-10 - Philipp Heckelt \u003cphe@move-elevator.de\u003e\n```\nRelease 1.1.1\n---\nBugfix: Fix hook exception in frontend mode on active backend user login\n```\n\n2017-12-22 - Philipp Heckelt \u003cphe@move-elevator.de\u003e\n```\nRelease 1.1.0\n---\nFeature: Optimized validator error messages\nFeature: Validator for same passwords\nFeature: Different Message for first password change\n```\n\n2017-12-04 - Philipp Heckelt \u003cphe@move-elevator.de\u003e\n```\nRelease 1.0.4\n---\nFeature: Use internal database connection for TYPOv8 compatibility, remove database connection factory\n```\n\n2017-12-08 - Philipp Heckelt \u003cphe@move-elevator.de\u003e\n```\nRelease 1.0.3\n---\nBugfix: Optional port in database configuration\n```\n\n2017-12-08 - Philipp Heckelt \u003cphe@move-elevator.de\u003e\n```\nRelease 1.0.2\n---\nBugfix: Language service\n```\n\n2017-12-08 - Philipp Heckelt \u003cphe@move-elevator.de\u003e\n```\nRelease 1.0.1\n---\nBugfix: Extension configuration\n```\n\n2017-12-04 - Philipp Heckelt \u003cphe@move-elevator.de\u003e\n```\nRelease 1.0.0\n```\n\n# Roadmap\n* Blacklist for usernames like \"admin\"\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmove-elevator%2Fme_backend_security","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fmove-elevator%2Fme_backend_security","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmove-elevator%2Fme_backend_security/lists"}