Enhanced password requirements
Request for increased password requirements. Some requirements can be soft requirements (so we can just have them as recommendations on the passwords page). The requirements are:
- 8 characters long for regular users
- 11 characters long for admin users (soft requirement)
Require upper case, lower case, numeric, and 1 special character
- Not form any words (Soft requirement)
- Not be based on any personal information (soft requirement)
- Password reset every 90 days
- Force re-login after any password change.
- Disallow reuse of passwords.
- Lock out users after consecutive failed login attempts.