Greetings, all.
Our organization wants to implement a method to force a password change due to password age. I have found one plugin for this, but it will not work in our environment.
In fact, due to the uniqueness of our environment, I suspect that I'd need to rework anything that might be offered. So that being the case, I'm going to take a stab at building my own plugin, despite my inexperience with PHP and javascript. Because I lack experience, any tips or suggestions are welcomed.
My plan is to combine the features of the standard password plugin with the force-change routines from force_pass (
http://www.roundcubeforum.net/7-third-party-contributions/46-api-based-plugins/7468-new-file-added-force-password-change.html) which was written for postfix. We need the poppassd support from the password plugin.
Here's where things get muddy for me - I need to store the password age somewhere RC can read and write. Our users only have one method to change their email passwords - within RC. While the password age is saved in the shadow file on the mailserver, RC is on a separate server and can not read or write to the shadow file.
So it seems the best idea would be to save the password age within the Prefs in the RC database. That should be quick and easy to read, and the password change operation - while still using poppassd to do the real work - should be able to update that pref in the RC db.
Will this work? Any of you plugin developers see any glaring hangups with this? Any suggestions to offer?